45.14.38.4 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Bosnia and Herzegovina

运营商(isp): Formea Drustvo Za Trgovinu Informaticki Inzenjering I Konsalting d.o.o. Visoko

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Commercial

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	(sshd) Failed SSH login from 45.14.38.4 (BA/Bosnia and Herzegovina/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Apr 11 02:03:13 srv sshd[30785]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.14.38.4 user=root Apr 11 02:03:15 srv sshd[30785]: Failed password for root from 45.14.38.4 port 34158 ssh2 Apr 11 02:10:20 srv sshd[30881]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.14.38.4 user=root Apr 11 02:10:22 srv sshd[30881]: Failed password for root from 45.14.38.4 port 50204 ssh2 Apr 11 02:13:12 srv sshd[30912]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.14.38.4 user=root	2020-04-11 07:33:18
attackbots	(sshd) Failed SSH login from 45.14.38.4 (BA/Bosnia and Herzegovina/-): 5 in the last 3600 secs	2020-04-08 15:49:54
attack	Apr 7 01:48:44 host sshd[44086]: Invalid user python from 45.14.38.4 port 45992 ...	2020-04-07 07:53:12
attackbotsspam	2020-04-04T13:50:21.150963shield sshd\[26103\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.14.38.4 user=root 2020-04-04T13:50:22.910564shield sshd\[26103\]: Failed password for root from 45.14.38.4 port 40316 ssh2 2020-04-04T13:54:36.134172shield sshd\[27059\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.14.38.4 user=root 2020-04-04T13:54:38.234832shield sshd\[27059\]: Failed password for root from 45.14.38.4 port 53018 ssh2 2020-04-04T13:58:53.889692shield sshd\[28108\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.14.38.4 user=root	2020-04-05 02:22:28
attack	SSH Brute Force, server-1 sshd[14495]: Failed password for invalid user arma3server from 45.14.38.4 port 50782 ssh2	2019-08-16 11:29:34
attackspambots	Aug 15 00:54:09 www_kotimaassa_fi sshd[26259]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.14.38.4 Aug 15 00:54:10 www_kotimaassa_fi sshd[26259]: Failed password for invalid user infoadm from 45.14.38.4 port 34686 ssh2 ...	2019-08-15 09:07:47

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.14.38.4
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 22973
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;45.14.38.4.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019081401 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Thu Aug 15 09:07:39 CST 2019
;; MSG SIZE  rcvd: 114

HOST信息:

Host 4.38.14.45.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 4.38.14.45.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
36.155.115.95	attackspambots	Nov 8 17:38:52 xb0 sshd[15994]: Failed password for invalid user dm from 36.155.115.95 port 53915 ssh2 Nov 8 17:38:52 xb0 sshd[15994]: Received disconnect from 36.155.115.95: 11: Bye Bye [preauth] Nov 8 17:53:37 xb0 sshd[16505]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.155.115.95 user=r.r Nov 8 17:53:39 xb0 sshd[16505]: Failed password for r.r from 36.155.115.95 port 47846 ssh2 Nov 8 17:53:40 xb0 sshd[16505]: Received disconnect from 36.155.115.95: 11: Bye Bye [preauth] Nov 8 17:59:03 xb0 sshd[18437]: Failed password for invalid user test from 36.155.115.95 port 35697 ssh2 Nov 8 17:59:03 xb0 sshd[18437]: Received disconnect from 36.155.115.95: 11: Bye Bye [preauth] Nov 8 18:04:11 xb0 sshd[21194]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.155.115.95 user=r.r Nov 8 18:04:13 xb0 sshd[21194]: Failed password for r.r from 36.155.115.95 port 51782 ssh2 Nov 8 18:04:14........ -------------------------------	2019-11-10 17:46:02
106.13.39.207	attack	Nov 10 07:22:36 vps01 sshd[12239]: Failed password for root from 106.13.39.207 port 52212 ssh2	2019-11-10 18:02:03
167.114.103.140	attackbots	Nov 10 08:29:06 vmanager6029 sshd\[22672\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.114.103.140 user=root Nov 10 08:29:08 vmanager6029 sshd\[22672\]: Failed password for root from 167.114.103.140 port 41926 ssh2 Nov 10 08:32:19 vmanager6029 sshd\[22714\]: Invalid user vagrant from 167.114.103.140 port 60245 Nov 10 08:32:19 vmanager6029 sshd\[22714\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.114.103.140	2019-11-10 17:48:26
106.12.217.180	attack	Nov 9 23:26:52 hanapaa sshd\[30781\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.217.180 user=root Nov 9 23:26:53 hanapaa sshd\[30781\]: Failed password for root from 106.12.217.180 port 34422 ssh2 Nov 9 23:31:57 hanapaa sshd\[31182\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.217.180 user=root Nov 9 23:31:59 hanapaa sshd\[31182\]: Failed password for root from 106.12.217.180 port 41698 ssh2 Nov 9 23:36:52 hanapaa sshd\[31572\]: Invalid user rpm from 106.12.217.180	2019-11-10 17:43:35
218.235.29.87	attackspam	Nov 10 09:15:18 vtv3 sshd\[31032\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.235.29.87 user=root Nov 10 09:15:19 vtv3 sshd\[31032\]: Failed password for root from 218.235.29.87 port 51360 ssh2 Nov 10 09:19:27 vtv3 sshd\[911\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.235.29.87 user=root Nov 10 09:19:29 vtv3 sshd\[911\]: Failed password for root from 218.235.29.87 port 59880 ssh2 Nov 10 09:23:40 vtv3 sshd\[3577\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.235.29.87 user=root Nov 10 09:37:28 vtv3 sshd\[12313\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.235.29.87 user=root Nov 10 09:37:30 vtv3 sshd\[12313\]: Failed password for root from 218.235.29.87 port 37530 ssh2 Nov 10 09:42:10 vtv3 sshd\[15260\]: Invalid user 1234 from 218.235.29.87 port 46064 Nov 10 09:42:10 vtv3 sshd\[15260\]: pam_unix\(ssh	2019-11-10 17:28:19
212.30.52.243	attackbots	Nov 10 09:39:28 root sshd[24640]: Failed password for root from 212.30.52.243 port 42735 ssh2 Nov 10 09:43:30 root sshd[24693]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.30.52.243 Nov 10 09:43:32 root sshd[24693]: Failed password for invalid user jill from 212.30.52.243 port 33654 ssh2 ...	2019-11-10 17:53:50
185.216.140.252	attackbots	11/10/2019-10:35:16.700556 185.216.140.252 Protocol: 6 ET DROP Dshield Block Listed Source group 1	2019-11-10 17:50:04
139.59.41.154	attack	Nov 10 10:37:40 SilenceServices sshd[18969]: Failed password for root from 139.59.41.154 port 60920 ssh2 Nov 10 10:41:47 SilenceServices sshd[20316]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.41.154 Nov 10 10:41:49 SilenceServices sshd[20316]: Failed password for invalid user kaushik from 139.59.41.154 port 49814 ssh2	2019-11-10 17:48:48
120.89.64.8	attackspambots	Nov 10 09:25:04 web8 sshd\[13741\]: Invalid user nbvcxz from 120.89.64.8 Nov 10 09:25:04 web8 sshd\[13741\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.89.64.8 Nov 10 09:25:06 web8 sshd\[13741\]: Failed password for invalid user nbvcxz from 120.89.64.8 port 36102 ssh2 Nov 10 09:29:18 web8 sshd\[15827\]: Invalid user rjirfrgbde from 120.89.64.8 Nov 10 09:29:18 web8 sshd\[15827\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.89.64.8	2019-11-10 17:39:32
106.54.239.60	attackspambots	Nov 10 10:18:48 ns41 sshd[30114]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.239.60	2019-11-10 17:37:29
2.228.163.157	attackspambots	Failed password for root from 2.228.163.157 port 41386 ssh2 Invalid user grahm from 2.228.163.157 port 49810 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=2.228.163.157 Failed password for invalid user grahm from 2.228.163.157 port 49810 ssh2 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=2.228.163.157 user=root	2019-11-10 17:24:52
167.179.69.206	attackbotsspam	Nov 9 20:15:05 shadeyouvpn sshd[24359]: Address 167.179.69.206 maps to 167.179.69.206.vultr.com, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Nov 9 20:15:05 shadeyouvpn sshd[24359]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.179.69.206 user=r.r Nov 9 20:15:07 shadeyouvpn sshd[24359]: Failed password for r.r from 167.179.69.206 port 49706 ssh2 Nov 9 20:15:07 shadeyouvpn sshd[24359]: Received disconnect from 167.179.69.206: 11: Bye Bye [preauth] Nov 9 20:35:16 shadeyouvpn sshd[5281]: Address 167.179.69.206 maps to 167.179.69.206.vultr.com, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Nov 9 20:35:16 shadeyouvpn sshd[5281]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.179.69.206 user=r.r Nov 9 20:35:18 shadeyouvpn sshd[5281]: Failed password for r.r from 167.179.69.206 port 60256 ssh2 Nov 9 20:35:18 shadeyouvpn sshd[52........ -------------------------------	2019-11-10 17:28:39
159.203.123.196	attack	Brute force attempt	2019-11-10 17:26:34
106.13.58.170	attackbotsspam	Nov 10 05:57:41 firewall sshd[5218]: Failed password for invalid user teampspeak from 106.13.58.170 port 50586 ssh2 Nov 10 06:02:45 firewall sshd[5399]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.58.170 user=root Nov 10 06:02:47 firewall sshd[5399]: Failed password for root from 106.13.58.170 port 57800 ssh2 ...	2019-11-10 17:41:23
94.23.198.73	attack	5x Failed Password	2019-11-10 17:37:53

最近上报的IP列表

175.21.20.10	67.129.241.30	18.217.247.237	221.150.155.103
186.210.17.236	159.65.155.10	1.235.143.219	203.45.45.241
123.10.166.57	101.227.90.169	189.126.173.15	168.90.78.216
178.62.155.249	186.96.127.221	191.53.196.37	187.74.157.246
43.246.138.6	116.26.93.174	184.101.65.42	198.12.127.111