103.45.154.214

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: Shenzhen Qianhai bird cloud computing Co. Ltd.

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	$f2bV_matches_ltvn	2019-10-11 02:48:37
attackspam	2019-10-09T12:40:50.776796abusebot-8.cloudsearch.cf sshd\[27620\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.45.154.214 user=root	2019-10-10 00:36:10
attackbots	Oct 5 05:51:30 sachi sshd\[12322\]: Invalid user P@\$\$wort321 from 103.45.154.214 Oct 5 05:51:30 sachi sshd\[12322\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.45.154.214 Oct 5 05:51:32 sachi sshd\[12322\]: Failed password for invalid user P@\$\$wort321 from 103.45.154.214 port 43550 ssh2 Oct 5 05:57:27 sachi sshd\[12807\]: Invalid user Jelszo1q from 103.45.154.214 Oct 5 05:57:27 sachi sshd\[12807\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.45.154.214	2019-10-06 00:06:46
attackspam	Sep 28 09:46:20 hcbb sshd\[11759\]: Invalid user ftpuser from 103.45.154.214 Sep 28 09:46:20 hcbb sshd\[11759\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.45.154.214 Sep 28 09:46:22 hcbb sshd\[11759\]: Failed password for invalid user ftpuser from 103.45.154.214 port 33272 ssh2 Sep 28 09:51:15 hcbb sshd\[12165\]: Invalid user ismail from 103.45.154.214 Sep 28 09:51:15 hcbb sshd\[12165\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.45.154.214	2019-09-29 04:02:34
attackbotsspam	Sep 23 04:28:14 aiointranet sshd\[24696\]: Invalid user webadmin from 103.45.154.214 Sep 23 04:28:14 aiointranet sshd\[24696\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.45.154.214 Sep 23 04:28:15 aiointranet sshd\[24696\]: Failed password for invalid user webadmin from 103.45.154.214 port 54410 ssh2 Sep 23 04:34:35 aiointranet sshd\[25249\]: Invalid user ubnt from 103.45.154.214 Sep 23 04:34:35 aiointranet sshd\[25249\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.45.154.214	2019-09-24 03:15:23
attackbots	Sep 22 09:03:06 kapalua sshd\[4306\]: Invalid user test from 103.45.154.214 Sep 22 09:03:06 kapalua sshd\[4306\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.45.154.214 Sep 22 09:03:09 kapalua sshd\[4306\]: Failed password for invalid user test from 103.45.154.214 port 41838 ssh2 Sep 22 09:08:16 kapalua sshd\[4790\]: Invalid user asher from 103.45.154.214 Sep 22 09:08:16 kapalua sshd\[4790\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.45.154.214	2019-09-23 03:11:36
attackbots	Brute force attempt	2019-09-19 21:53:25
attackspambots	Brute force attempt	2019-09-19 18:55:29
attack	Sep 14 07:33:52 aat-srv002 sshd[12427]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.45.154.214 Sep 14 07:33:54 aat-srv002 sshd[12427]: Failed password for invalid user raniere from 103.45.154.214 port 58124 ssh2 Sep 14 07:39:37 aat-srv002 sshd[12562]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.45.154.214 Sep 14 07:39:40 aat-srv002 sshd[12562]: Failed password for invalid user monitor from 103.45.154.214 port 41078 ssh2 ...	2019-09-14 22:40:55
attackbotsspam	Invalid user git from 103.45.154.214 port 43484	2019-09-13 12:30:02

Comments on same subnet:

IP	Type	Details	Datetime
103.45.154.215	attackspam	$f2bV_matches	2020-04-05 13:23:17
103.45.154.215	attack	Oct 4 23:30:09 auw2 sshd\[8102\]: Invalid user password123!@\# from 103.45.154.215 Oct 4 23:30:09 auw2 sshd\[8102\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.45.154.215 Oct 4 23:30:11 auw2 sshd\[8102\]: Failed password for invalid user password123!@\# from 103.45.154.215 port 42618 ssh2 Oct 4 23:34:58 auw2 sshd\[8556\]: Invalid user Rock2017 from 103.45.154.215 Oct 4 23:34:58 auw2 sshd\[8556\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.45.154.215	2019-10-05 17:50:56
103.45.154.215	attackspam	Oct 3 18:35:41 eddieflores sshd\[16903\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.45.154.215 user=root Oct 3 18:35:42 eddieflores sshd\[16903\]: Failed password for root from 103.45.154.215 port 39874 ssh2 Oct 3 18:40:33 eddieflores sshd\[17397\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.45.154.215 user=root Oct 3 18:40:35 eddieflores sshd\[17397\]: Failed password for root from 103.45.154.215 port 47522 ssh2 Oct 3 18:45:21 eddieflores sshd\[17771\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.45.154.215 user=root	2019-10-04 14:28:54
103.45.154.215	attackbotsspam	Automated report - ssh fail2ban: Sep 29 06:57:44 authentication failure Sep 29 06:57:45 wrong password, user=SYSTRAY, port=53438, ssh2 Sep 29 07:02:31 authentication failure	2019-09-29 13:11:12
103.45.154.215	attackspambots	Sep 28 11:39:05 tuotantolaitos sshd[13649]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.45.154.215 Sep 28 11:39:07 tuotantolaitos sshd[13649]: Failed password for invalid user Passw0rd44 from 103.45.154.215 port 40734 ssh2 ...	2019-09-28 16:40:42
103.45.154.215	attackspambots	Sep 27 08:23:37 xb3 sshd[19917]: Failed password for invalid user nelio from 103.45.154.215 port 33834 ssh2 Sep 27 08:23:38 xb3 sshd[19917]: Received disconnect from 103.45.154.215: 11: Bye Bye [preauth] Sep 27 08:48:16 xb3 sshd[23795]: Failed password for invalid user tg from 103.45.154.215 port 49696 ssh2 Sep 27 08:48:17 xb3 sshd[23795]: Received disconnect from 103.45.154.215: 11: Bye Bye [preauth] Sep 27 08:52:24 xb3 sshd[22191]: Failed password for invalid user nate from 103.45.154.215 port 52942 ssh2 Sep 27 08:52:25 xb3 sshd[22191]: Received disconnect from 103.45.154.215: 11: Bye Bye [preauth] Sep 27 09:00:41 xb3 sshd[18607]: Failed password for invalid user mmoseley from 103.45.154.215 port 59432 ssh2 Sep 27 09:00:42 xb3 sshd[18607]: Received disconnect from 103.45.154.215: 11: Bye Bye [preauth] Sep 27 09:04:56 xb3 sshd[28945]: Failed password for invalid user so360 from 103.45.154.215 port 34442 ssh2 Sep 27 09:04:56 xb3 sshd[28945]: Received disconnect from 103........ -------------------------------	2019-09-28 03:53:39

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 103.45.154.214
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 17800
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;103.45.154.214.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019091202 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Fri Sep 13 12:29:43 CST 2019
;; MSG SIZE  rcvd: 118

Host info

Host 214.154.45.103.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 214.154.45.103.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
151.53.138.5	attackspam	Automatic report - Port Scan Attack	2019-07-19 19:44:35
175.22.169.172	attackbots	Honeypot attack, port: 23, PTR: 172.169.22.175.adsl-pool.jlccptt.net.cn.	2019-07-19 19:32:28
46.105.244.17	attackspam	Jul 19 12:09:26 ArkNodeAT sshd\[5595\]: Invalid user np from 46.105.244.17 Jul 19 12:09:26 ArkNodeAT sshd\[5595\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.105.244.17 Jul 19 12:09:27 ArkNodeAT sshd\[5595\]: Failed password for invalid user np from 46.105.244.17 port 43260 ssh2	2019-07-19 19:52:01
62.234.8.41	attackspam	Jul 19 11:48:50 animalibera sshd[17340]: Invalid user catalin from 62.234.8.41 port 40232 ...	2019-07-19 19:58:03
110.136.110.148	attackbots	multiscann 148.subnet110-136-110.speedy.telkom.net.id TCP 54 8728 → 55470 [RST, ACK] Seq=1 Ack=1 Win=0 Len=0 [TCP Retransmission] 55470 → 8728 [SYN] Seq=0 Win=8192 Len=0 MSS=1412 WS=4 SACK_PERM=1	2019-07-19 20:15:21
144.217.40.3	attackspambots	Automatic report - Banned IP Access	2019-07-19 19:39:03
92.14.96.64	attack	Honeypot attack, port: 23, PTR: host-92-14-96-64.as43234.net.	2019-07-19 19:44:11
176.31.250.160	attack	Jul 19 12:04:48 SilenceServices sshd[10947]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=176.31.250.160 Jul 19 12:04:50 SilenceServices sshd[10947]: Failed password for invalid user test8 from 176.31.250.160 port 53886 ssh2 Jul 19 12:10:09 SilenceServices sshd[14557]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=176.31.250.160	2019-07-19 19:52:45
104.148.87.122	attackbots	Web App Attack	2019-07-19 20:25:03
86.188.246.2	attackbotsspam	Jul 19 08:06:46 vps691689 sshd[25185]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=86.188.246.2 Jul 19 08:06:49 vps691689 sshd[25185]: Failed password for invalid user mario from 86.188.246.2 port 56391 ssh2 ...	2019-07-19 19:43:14
121.127.12.6	attackspam	invalid login attempt	2019-07-19 20:05:40
185.137.111.123	attack	2019-07-19T12:40:54.100672beta postfix/smtpd[5151]: warning: unknown[185.137.111.123]: SASL LOGIN authentication failed: authentication failure 2019-07-19T12:41:56.185515beta postfix/smtpd[5151]: warning: unknown[185.137.111.123]: SASL LOGIN authentication failed: authentication failure 2019-07-19T12:42:57.777969beta postfix/smtpd[5176]: warning: unknown[185.137.111.123]: SASL LOGIN authentication failed: authentication failure ...	2019-07-19 20:21:43
51.68.123.198	attackspam	Jan 21 02:23:51 vtv3 sshd\[14008\]: Invalid user ali from 51.68.123.198 port 43872 Jan 21 02:23:51 vtv3 sshd\[14008\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.68.123.198 Jan 21 02:23:54 vtv3 sshd\[14008\]: Failed password for invalid user ali from 51.68.123.198 port 43872 ssh2 Jan 21 02:27:24 vtv3 sshd\[15310\]: Invalid user sql from 51.68.123.198 port 43664 Jan 21 02:27:24 vtv3 sshd\[15310\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.68.123.198 Jan 25 18:29:55 vtv3 sshd\[14388\]: Invalid user fse from 51.68.123.198 port 53790 Jan 25 18:29:55 vtv3 sshd\[14388\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.68.123.198 Jan 25 18:29:58 vtv3 sshd\[14388\]: Failed password for invalid user fse from 51.68.123.198 port 53790 ssh2 Jan 25 18:33:54 vtv3 sshd\[15672\]: Invalid user hamish from 51.68.123.198 port 55892 Jan 25 18:33:54 vtv3 sshd\[15672\]: pam_unix\(sshd	2019-07-19 19:56:44
218.212.183.44	attack	Jul 17 01:18:13 shadeyouvpn sshd[11418]: reveeclipse mapping checking getaddrinfo for 44.183.212.218.starhub.net.sg [218.212.183.44] failed - POSSIBLE BREAK-IN ATTEMPT! Jul 17 01:18:13 shadeyouvpn sshd[11418]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.212.183.44 user=dev Jul 17 01:18:15 shadeyouvpn sshd[11418]: Failed password for dev from 218.212.183.44 port 53415 ssh2 Jul 17 01:18:18 shadeyouvpn sshd[11418]: Failed password for dev from 218.212.183.44 port 53415 ssh2 Jul 17 01:18:20 shadeyouvpn sshd[11418]: Failed password for dev from 218.212.183.44 port 53415 ssh2 Jul 17 01:18:22 shadeyouvpn sshd[11418]: Failed password for dev from 218.212.183.44 port 53415 ssh2 Jul 17 01:18:25 shadeyouvpn sshd[11418]: Failed password for dev from 218.212.183.44 port 53415 ssh2 Jul 17 01:18:25 shadeyouvpn sshd[11418]: Received disconnect from 218.212.183.44: 11: Bye Bye [preauth] Jul 17 01:18:25 shadeyouvpn sshd[11418]: PAM 4 more ........ -------------------------------	2019-07-19 20:20:27
222.124.16.227	attack	Jul 19 11:33:00 microserver sshd[21431]: Invalid user customer from 222.124.16.227 port 42332 Jul 19 11:33:00 microserver sshd[21431]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.124.16.227 Jul 19 11:33:02 microserver sshd[21431]: Failed password for invalid user customer from 222.124.16.227 port 42332 ssh2 Jul 19 11:38:54 microserver sshd[22093]: Invalid user deploy from 222.124.16.227 port 40216 Jul 19 11:38:54 microserver sshd[22093]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.124.16.227 Jul 19 11:50:37 microserver sshd[23902]: Invalid user deploy from 222.124.16.227 port 35988 Jul 19 11:50:37 microserver sshd[23902]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.124.16.227 Jul 19 11:50:39 microserver sshd[23902]: Failed password for invalid user deploy from 222.124.16.227 port 35988 ssh2 Jul 19 11:56:33 microserver sshd[24588]: Invalid user moon from 222.124.16.227	2019-07-19 20:11:38

Recently Reported IPs

53.14.173.216	79.181.45.126	149.165.217.62	65.119.225.192
5.17.183.182	3.82.69.186	35.196.30.96	183.157.173.202
165.18.189.7	120.204.202.112	140.224.111.203	120.104.198.193
109.43.185.58	118.139.195.240	130.61.122.5	130.29.138.47
33.32.46.50	118.244.206.217	116.22.170.227	110.13.14.16