45.14.150.52 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Romania

运营商(isp): SC Netsilvania Network SRL

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	" "	2020-09-11 22:50:59
attackbots	Brute%20Force%20SSH	2020-09-11 14:57:18
attack	(sshd) Failed SSH login from 45.14.150.52 (RO/Romania/-): 3 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: Sep 10 18:58:35 centos8 sshd[164313]: Invalid user test1 from 45.14.150.52 port 37620 Sep 10 18:58:37 centos8 sshd[164313]: Failed password for invalid user test1 from 45.14.150.52 port 37620 ssh2 Sep 10 19:08:22 centos8 sshd[164606]: Invalid user range from 45.14.150.52 port 53926	2020-09-11 07:09:18
attackspam	Jul 9 20:05:27 xeon sshd[30585]: Failed password for invalid user takei from 45.14.150.52 port 54132 ssh2	2020-07-10 03:37:18
attackbotsspam	2020-06-29T19:49:31.723648server.espacesoutien.com sshd[2384]: Invalid user guohui from 45.14.150.52 port 57330 2020-06-29T19:49:31.743360server.espacesoutien.com sshd[2384]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.14.150.52 2020-06-29T19:49:31.723648server.espacesoutien.com sshd[2384]: Invalid user guohui from 45.14.150.52 port 57330 2020-06-29T19:49:33.784093server.espacesoutien.com sshd[2384]: Failed password for invalid user guohui from 45.14.150.52 port 57330 ssh2 ...	2020-06-30 04:30:24
attackspambots	unauthorized connection attempt	2020-06-29 17:32:20
attackspam	leo_www	2020-06-25 03:46:07
attackbotsspam	Jun 21 05:49:49 minden010 sshd[16053]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.14.150.52 Jun 21 05:49:51 minden010 sshd[16053]: Failed password for invalid user admin from 45.14.150.52 port 52266 ssh2 Jun 21 05:57:09 minden010 sshd[19236]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.14.150.52 ...	2020-06-21 12:53:37
attackbots	Jun 7 22:11:51 cdc sshd[6218]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.14.150.52 user=root Jun 7 22:11:52 cdc sshd[6218]: Failed password for invalid user root from 45.14.150.52 port 57818 ssh2	2020-06-08 06:58:56
attackbotsspam	SIP/5060 Probe, BF, Hack -	2020-05-28 16:20:59
attack	TCP (SYN) 45.14.150.52:58729 -> port 18968, len 44	2020-05-25 03:30:11
attackspambots	SSH Invalid Login	2020-05-23 06:39:22
attackbots	May 21 14:03:05 Invalid user nrg from 45.14.150.52 port 60374	2020-05-22 02:39:12
attack	RO_Parfumuri Femei.com SRL_<177>1588971058 [1:2403348:57130] ET CINS Active Threat Intelligence Poor Reputation IP TCP group 25 [Classification: Misc Attack] [Priority: 2]: {TCP} 45.14.150.52:46788	2020-05-09 05:10:27
attackspambots	Apr 22 06:40:36 sshgateway sshd\[452\]: Invalid user zz from 45.14.150.52 Apr 22 06:40:36 sshgateway sshd\[452\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.14.150.52 Apr 22 06:40:38 sshgateway sshd\[452\]: Failed password for invalid user zz from 45.14.150.52 port 42502 ssh2	2020-04-22 14:53:23
attack	Apr 16 14:12:26 [host] sshd[29144]: pam_unix(sshd: Apr 16 14:12:27 [host] sshd[29144]: Failed passwor Apr 16 14:19:31 [host] sshd[29450]: Invalid user l	2020-04-16 20:24:26
attack	Apr 16 06:04:30 host sshd[62465]: Invalid user grid from 45.14.150.52 port 48704 ...	2020-04-16 12:48:05
attack	SSH login attempts.	2020-04-09 17:44:58
attackbotsspam	Apr 2 20:23:27 vps647732 sshd[9238]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.14.150.52 Apr 2 20:23:29 vps647732 sshd[9238]: Failed password for invalid user ssq from 45.14.150.52 port 54950 ssh2 ...	2020-04-03 03:06:55
attackbots	[ssh] SSH attack	2020-03-19 02:09:06
attackspam	Mar 6 01:38:36 firewall sshd[15624]: Invalid user hata123 from 45.14.150.52 Mar 6 01:38:38 firewall sshd[15624]: Failed password for invalid user hata123 from 45.14.150.52 port 35990 ssh2 Mar 6 01:46:52 firewall sshd[15768]: Invalid user eppc from 45.14.150.52 ...	2020-03-06 21:27:54
attack	Feb 23 14:28:32 tuxlinux sshd[45171]: Invalid user tanwei from 45.14.150.52 port 46186 Feb 23 14:28:32 tuxlinux sshd[45171]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.14.150.52 Feb 23 14:28:32 tuxlinux sshd[45171]: Invalid user tanwei from 45.14.150.52 port 46186 Feb 23 14:28:32 tuxlinux sshd[45171]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.14.150.52 Feb 23 14:28:32 tuxlinux sshd[45171]: Invalid user tanwei from 45.14.150.52 port 46186 Feb 23 14:28:32 tuxlinux sshd[45171]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.14.150.52 Feb 23 14:28:34 tuxlinux sshd[45171]: Failed password for invalid user tanwei from 45.14.150.52 port 46186 ssh2 ...	2020-02-23 22:34:33
attackbots	SSH bruteforce (Triggered fail2ban)	2020-02-17 07:08:29

相同子网IP讨论:

IP	类型	评论内容	时间
45.14.150.51	attackspambots	Banned for a week because repeated abuses, for example SSH, but not only	2020-10-11 04:37:24
45.14.150.51	attack	(sshd) Failed SSH login from 45.14.150.51 (RO/Romania/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Oct 10 08:12:10 server4 sshd[27424]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.14.150.51 user=nobody Oct 10 08:12:12 server4 sshd[27424]: Failed password for nobody from 45.14.150.51 port 59558 ssh2 Oct 10 08:29:52 server4 sshd[10555]: Invalid user majordomo5 from 45.14.150.51 Oct 10 08:29:52 server4 sshd[10555]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.14.150.51 Oct 10 08:29:54 server4 sshd[10555]: Failed password for invalid user majordomo5 from 45.14.150.51 port 56344 ssh2	2020-10-10 20:35:58
45.14.150.130	attackbots	Sep 28 00:55:58 localhost sshd\[21533\]: Invalid user ftp_test from 45.14.150.130 Sep 28 00:55:58 localhost sshd\[21533\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.14.150.130 Sep 28 00:56:00 localhost sshd\[21533\]: Failed password for invalid user ftp_test from 45.14.150.130 port 52920 ssh2 Sep 28 01:04:38 localhost sshd\[21805\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.14.150.130 user=root Sep 28 01:04:40 localhost sshd\[21805\]: Failed password for root from 45.14.150.130 port 34036 ssh2 ...	2020-09-28 07:24:40
45.14.150.130	attackspambots	Sep 27 14:48:36 scw-6657dc sshd[10123]: Failed password for root from 45.14.150.130 port 37550 ssh2 Sep 27 14:48:36 scw-6657dc sshd[10123]: Failed password for root from 45.14.150.130 port 37550 ssh2 Sep 27 14:57:12 scw-6657dc sshd[10371]: Invalid user mc from 45.14.150.130 port 48166 ...	2020-09-27 23:55:05
45.14.150.130	attackspambots	k+ssh-bruteforce	2020-09-27 15:56:32
45.14.150.140	attackbots	sshd jail - ssh hack attempt	2020-09-24 01:06:19
45.14.150.140	attackbots	sshd jail - ssh hack attempt	2020-09-23 17:09:07
45.14.150.51	attack	Sep 22 12:51:43 ip106 sshd[9293]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.14.150.51 Sep 22 12:51:46 ip106 sshd[9293]: Failed password for invalid user gb from 45.14.150.51 port 39746 ssh2 ...	2020-09-22 21:04:53
45.14.150.51	attack	$f2bV_matches	2020-09-22 05:14:43
45.14.150.140	attackspambots	2020-09-20T15:00:46.079720abusebot-3.cloudsearch.cf sshd[10613]: Invalid user frappe from 45.14.150.140 port 39690 2020-09-20T15:00:46.085728abusebot-3.cloudsearch.cf sshd[10613]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.14.150.140 2020-09-20T15:00:46.079720abusebot-3.cloudsearch.cf sshd[10613]: Invalid user frappe from 45.14.150.140 port 39690 2020-09-20T15:00:48.233131abusebot-3.cloudsearch.cf sshd[10613]: Failed password for invalid user frappe from 45.14.150.140 port 39690 ssh2 2020-09-20T15:09:48.367897abusebot-3.cloudsearch.cf sshd[10690]: Invalid user git from 45.14.150.140 port 50204 2020-09-20T15:09:48.373615abusebot-3.cloudsearch.cf sshd[10690]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.14.150.140 2020-09-20T15:09:48.367897abusebot-3.cloudsearch.cf sshd[10690]: Invalid user git from 45.14.150.140 port 50204 2020-09-20T15:09:50.595996abusebot-3.cloudsearch.cf sshd[10690]: Failed ...	2020-09-21 01:34:26
45.14.150.140	attackspam	45.14.150.140 (RO/Romania/-), 5 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_DISTATTACK; Logs: Sep 20 01:43:25 server2 sshd[12632]: Failed password for root from 51.79.84.101 port 47466 ssh2 Sep 20 01:43:10 server2 sshd[12434]: Failed password for root from 149.56.132.202 port 43078 ssh2 Sep 20 01:43:15 server2 sshd[12610]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.127.59 user=root Sep 20 01:43:17 server2 sshd[12610]: Failed password for root from 139.155.127.59 port 53912 ssh2 Sep 20 01:43:34 server2 sshd[12715]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.14.150.140 user=root IP Addresses Blocked: 51.79.84.101 (CA/Canada/-) 149.56.132.202 (CA/Canada/-) 139.155.127.59 (CN/China/-)	2020-09-20 17:33:15
45.14.150.140	attack	Invalid user server from 45.14.150.140 port 57638	2020-09-13 02:55:01
45.14.150.140	attack	Invalid user server from 45.14.150.140 port 43064	2020-09-12 18:58:12
45.14.150.86	attack	ET CINS Active Threat Intelligence Poor Reputation IP group 24 - port: 1722 proto: tcp cat: Misc Attackbytes: 60	2020-09-11 00:44:59
45.14.150.86	attackbots	[N10.H2.VM2] Port Scanner Detected Blocked by UFW	2020-09-10 16:03:46

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.14.150.52
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 19391
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;45.14.150.52.			IN	A

;; AUTHORITY SECTION:
.			373	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020021601 1800 900 604800 86400

;; Query time: 210 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 17 07:08:27 CST 2020
;; MSG SIZE  rcvd: 116

HOST信息:

Host 52.150.14.45.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 52.150.14.45.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
187.111.23.14	attackspambots	$f2bV_matches	2019-10-30 00:46:51
111.230.73.133	attack	Oct 29 16:24:22 hcbbdb sshd\[28696\]: Invalid user pkd from 111.230.73.133 Oct 29 16:24:22 hcbbdb sshd\[28696\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.230.73.133 Oct 29 16:24:24 hcbbdb sshd\[28696\]: Failed password for invalid user pkd from 111.230.73.133 port 59006 ssh2 Oct 29 16:30:40 hcbbdb sshd\[29331\]: Invalid user 1234 from 111.230.73.133 Oct 29 16:30:40 hcbbdb sshd\[29331\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.230.73.133	2019-10-30 00:34:00
178.62.10.18	attackspam	Automatic report - XMLRPC Attack	2019-10-30 00:40:12
42.87.160.220	attackspam	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/42.87.160.220/ CN - 1H : (772) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : CN NAME ASN : ASN4837 IP : 42.87.160.220 CIDR : 42.86.0.0/15 PREFIX COUNT : 1262 UNIQUE IP COUNT : 56665856 ATTACKS DETECTED ASN4837 : 1H - 17 3H - 40 6H - 83 12H - 154 24H - 277 DateTime : 2019-10-29 12:36:00 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery	2019-10-30 00:18:37
218.60.41.227	attackbots	Invalid user calistrato from 218.60.41.227 port 33393	2019-10-30 00:13:56
42.7.213.16	attack	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/42.7.213.16/ CN - 1H : (772) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : CN NAME ASN : ASN4837 IP : 42.7.213.16 CIDR : 42.4.0.0/14 PREFIX COUNT : 1262 UNIQUE IP COUNT : 56665856 ATTACKS DETECTED ASN4837 : 1H - 17 3H - 40 6H - 83 12H - 154 24H - 277 DateTime : 2019-10-29 12:36:01 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery	2019-10-30 00:18:57
86.122.55.15	attackspam	port scan and connect, tcp 23 (telnet)	2019-10-30 00:12:27
37.195.50.41	attackbots	SSH brutforce	2019-10-30 00:46:29
83.110.24.103	attack	Port Scan	2019-10-30 00:11:43
59.3.71.222	attackbotsspam	Oct 29 16:41:59 XXX sshd[56340]: Invalid user ofsaa from 59.3.71.222 port 47086	2019-10-30 00:25:11
65.49.126.174	attackspam	TCP Port Scanning	2019-10-30 00:04:28
152.136.26.44	attackbots	Too many connections or unauthorized access detected from Arctic banned ip	2019-10-30 00:41:49
45.82.153.132	attack	2019-10-29T17:05:37.163973mail01 postfix/smtpd[6620]: warning: unknown[45.82.153.132]: SASL PLAIN authentication failed: 2019-10-29T17:05:44.048045mail01 postfix/smtpd[2513]: warning: unknown[45.82.153.132]: SASL PLAIN authentication failed: 2019-10-29T17:06:06.090865mail01 postfix/smtpd[10452]: warning: unknown[45.82.153.132]: SASL PLAIN authentication failed:	2019-10-30 00:22:05
166.111.68.168	attackbotsspam	Oct 29 13:11:58 microserver sshd[13194]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=166.111.68.168 user=root Oct 29 13:12:00 microserver sshd[13194]: Failed password for root from 166.111.68.168 port 55284 ssh2 Oct 29 13:16:09 microserver sshd[13792]: Invalid user ^$%@$^!! from 166.111.68.168 port 57020 Oct 29 13:16:09 microserver sshd[13792]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=166.111.68.168 Oct 29 13:16:11 microserver sshd[13792]: Failed password for invalid user ^$%@$^!! from 166.111.68.168 port 57020 ssh2 Oct 29 13:28:28 microserver sshd[15244]: Invalid user raspberrypi from 166.111.68.168 port 34148 Oct 29 13:28:28 microserver sshd[15244]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=166.111.68.168 Oct 29 13:28:30 microserver sshd[15244]: Failed password for invalid user raspberrypi from 166.111.68.168 port 34148 ssh2 Oct 29 13:32:40 microserver sshd[15857]: Invali	2019-10-30 00:28:58
89.133.103.216	attackspambots	Oct 29 13:27:11 game-panel sshd[4149]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.133.103.216 Oct 29 13:27:14 game-panel sshd[4149]: Failed password for invalid user mickey1 from 89.133.103.216 port 46446 ssh2 Oct 29 13:31:21 game-panel sshd[4288]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.133.103.216	2019-10-30 00:47:20

最近上报的IP列表

106.13.3.238	3.123.154.171	190.95.96.212	115.63.204.123
5.165.86.163	189.209.1.39	202.130.169.177	11.111.197.14
136.236.66.174	195.97.27.1	55.193.12.122	189.209.0.52
128.14.226.167	211.95.28.170	201.247.45.118	189.209.0.39
174.52.209.168	198.251.89.19	189.209.0.241	23.95.12.242