14.116.195.245

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: ChinaNet Guangdong Province Network

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Jul 7 23:13:13 h2865660 sshd[26664]: Invalid user patrickc from 14.116.195.245 port 46380 Jul 7 23:13:13 h2865660 sshd[26664]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.116.195.245 Jul 7 23:13:13 h2865660 sshd[26664]: Invalid user patrickc from 14.116.195.245 port 46380 Jul 7 23:13:14 h2865660 sshd[26664]: Failed password for invalid user patrickc from 14.116.195.245 port 46380 ssh2 Jul 7 23:34:14 h2865660 sshd[27430]: Invalid user zumlot from 14.116.195.245 port 36672 ...	2020-07-08 07:57:31
attackbots	Jun 20 05:46:29 vps sshd[980049]: Failed password for invalid user uftp from 14.116.195.245 port 51542 ssh2 Jun 20 05:50:27 vps sshd[1001116]: Invalid user testphp from 14.116.195.245 port 49488 Jun 20 05:50:27 vps sshd[1001116]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.116.195.245 Jun 20 05:50:29 vps sshd[1001116]: Failed password for invalid user testphp from 14.116.195.245 port 49488 ssh2 Jun 20 05:54:23 vps sshd[1017748]: Invalid user manu from 14.116.195.245 port 47436 ...	2020-06-20 13:42:08
attackbots	Invalid user evi from 14.116.195.245 port 34232	2020-06-20 03:41:30
attackbotsspam	Jun 9 05:57:06 prox sshd[23301]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.116.195.245 Jun 9 05:57:08 prox sshd[23301]: Failed password for invalid user com from 14.116.195.245 port 43626 ssh2	2020-06-09 12:47:42
attackbotsspam	Jun 4 21:48:20 server1 sshd\[578\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.116.195.245 user=root Jun 4 21:48:22 server1 sshd\[578\]: Failed password for root from 14.116.195.245 port 43292 ssh2 Jun 4 21:50:52 server1 sshd\[1262\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.116.195.245 user=root Jun 4 21:50:54 server1 sshd\[1262\]: Failed password for root from 14.116.195.245 port 52098 ssh2 Jun 4 21:53:28 server1 sshd\[1924\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.116.195.245 user=root ...	2020-06-05 16:21:24
attackbotsspam	May 30 23:33:22 * sshd[5954]: Failed password for root from 14.116.195.245 port 54242 ssh2	2020-05-31 06:47:25

Comments on same subnet:

IP	Type	Details	Datetime
14.116.195.173	attackbotsspam	Jun 13 14:27:02 ourumov-web sshd\[24551\]: Invalid user varick from 14.116.195.173 port 55768 Jun 13 14:27:02 ourumov-web sshd\[24551\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.116.195.173 Jun 13 14:27:04 ourumov-web sshd\[24551\]: Failed password for invalid user varick from 14.116.195.173 port 55768 ssh2 ...	2020-06-13 22:10:18
14.116.195.173	attack	May 6 00:52:20 ws22vmsma01 sshd[78549]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.116.195.173 May 6 00:52:22 ws22vmsma01 sshd[78549]: Failed password for invalid user cs from 14.116.195.173 port 57198 ssh2 ...	2020-05-06 16:01:35
14.116.195.173	attack	Apr 25 19:16:40 ws12vmsma01 sshd[25907]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.116.195.173 Apr 25 19:16:40 ws12vmsma01 sshd[25907]: Invalid user pyt from 14.116.195.173 Apr 25 19:16:42 ws12vmsma01 sshd[25907]: Failed password for invalid user pyt from 14.116.195.173 port 54098 ssh2 ...	2020-04-26 07:35:38
14.116.195.173	attackspambots	Apr 20 22:05:49 h2779839 sshd[12103]: Invalid user zm from 14.116.195.173 port 40360 Apr 20 22:05:49 h2779839 sshd[12103]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.116.195.173 Apr 20 22:05:49 h2779839 sshd[12103]: Invalid user zm from 14.116.195.173 port 40360 Apr 20 22:05:51 h2779839 sshd[12103]: Failed password for invalid user zm from 14.116.195.173 port 40360 ssh2 Apr 20 22:08:46 h2779839 sshd[12162]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.116.195.173 user=root Apr 20 22:08:48 h2779839 sshd[12162]: Failed password for root from 14.116.195.173 port 44792 ssh2 Apr 20 22:11:50 h2779839 sshd[12248]: Invalid user admin from 14.116.195.173 port 49228 Apr 20 22:11:50 h2779839 sshd[12248]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.116.195.173 Apr 20 22:11:50 h2779839 sshd[12248]: Invalid user admin from 14.116.195.173 port 49228 Apr 20 22:1 ...	2020-04-21 07:37:01
14.116.195.173	attackspam	Lines containing failures of 14.116.195.173 Mar 29 00:01:26 neon sshd[38646]: Invalid user qwf from 14.116.195.173 port 49230 Mar 29 00:01:26 neon sshd[38646]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.116.195.173 Mar 29 00:01:28 neon sshd[38646]: Failed password for invalid user qwf from 14.116.195.173 port 49230 ssh2 Mar 29 00:01:29 neon sshd[38646]: Received disconnect from 14.116.195.173 port 49230:11: Bye Bye [preauth] Mar 29 00:01:29 neon sshd[38646]: Disconnected from invalid user qwf 14.116.195.173 port 49230 [preauth] Mar 29 00:05:38 neon sshd[39576]: Invalid user xg from 14.116.195.173 port 36004 Mar 29 00:05:38 neon sshd[39576]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.116.195.173 Mar 29 00:05:40 neon sshd[39576]: Failed password for invalid user xg from 14.116.195.173 port 36004 ssh2 Mar 29 00:05:42 neon sshd[39576]: Received disconnect from 14.116.195.173 por........ ------------------------------	2020-03-30 20:10:13
14.116.195.173	attackspambots	Invalid user linqj from 14.116.195.173 port 47456	2020-03-29 08:09:59
14.116.195.173	attackbotsspam	Mar 26 04:52:26 ns381471 sshd[16542]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.116.195.173 Mar 26 04:52:27 ns381471 sshd[16542]: Failed password for invalid user linqj from 14.116.195.173 port 37946 ssh2	2020-03-26 14:55:58
14.116.195.20	attackbots	$f2bV_matches	2019-12-06 04:00:52

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 14.116.195.245
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 56937
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;14.116.195.245.			IN	A

;; AUTHORITY SECTION:
.			523	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020052800 1800 900 604800 86400

;; Query time: 112 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu May 28 23:43:14 CST 2020
;; MSG SIZE  rcvd: 118

Host info

Host 245.195.116.14.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 245.195.116.14.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
165.22.248.215	attackbotsspam	Aug 17 23:15:57 lnxmail61 sshd[18544]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.248.215 Aug 17 23:15:57 lnxmail61 sshd[18544]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.248.215	2019-08-18 05:23:38
125.16.97.246	attack	Invalid user test from 125.16.97.246 port 34642	2019-08-18 05:13:24
183.83.163.179	attack	Unauthorized connection attempt from IP address 183.83.163.179 on Port 445(SMB)	2019-08-18 05:45:38
183.89.122.221	attack	Unauthorized connection attempt from IP address 183.89.122.221 on Port 445(SMB)	2019-08-18 05:38:54
129.204.65.101	attack	Aug 17 10:18:49 aiointranet sshd\[11647\]: Invalid user deploy from 129.204.65.101 Aug 17 10:18:49 aiointranet sshd\[11647\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.65.101 Aug 17 10:18:52 aiointranet sshd\[11647\]: Failed password for invalid user deploy from 129.204.65.101 port 47010 ssh2 Aug 17 10:23:42 aiointranet sshd\[12069\]: Invalid user eddie from 129.204.65.101 Aug 17 10:23:42 aiointranet sshd\[12069\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.65.101	2019-08-18 05:19:15
200.107.154.40	attack	Automated report - ssh fail2ban: Aug 17 22:55:42 wrong password, user=oracle, port=15925, ssh2 Aug 17 23:30:09 authentication failure Aug 17 23:30:11 wrong password, user=tipobuc, port=65385, ssh2	2019-08-18 05:36:49
190.79.198.227	attackspam	Unauthorized connection attempt from IP address 190.79.198.227 on Port 445(SMB)	2019-08-18 05:50:12
187.87.39.217	attack	Aug 17 23:27:24 [host] sshd[21904]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.87.39.217 user=root Aug 17 23:27:25 [host] sshd[21904]: Failed password for root from 187.87.39.217 port 51788 ssh2 Aug 17 23:32:16 [host] sshd[22027]: Invalid user dave from 187.87.39.217	2019-08-18 05:37:48
103.27.238.202	attackspambots	Aug 17 22:33:08 lnxded64 sshd[23222]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.27.238.202	2019-08-18 05:13:42
221.155.108.29	attackspambots	Brute force RDP, port 3389	2019-08-18 05:24:43
162.247.74.217	attackspambots	Aug 17 23:19:33 SilenceServices sshd[5817]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.247.74.217 Aug 17 23:19:36 SilenceServices sshd[5817]: Failed password for invalid user admin from 162.247.74.217 port 59766 ssh2 Aug 17 23:19:38 SilenceServices sshd[5817]: Failed password for invalid user admin from 162.247.74.217 port 59766 ssh2 Aug 17 23:19:40 SilenceServices sshd[5817]: Failed password for invalid user admin from 162.247.74.217 port 59766 ssh2	2019-08-18 05:34:59
187.216.0.158	attackbotsspam	Unauthorized connection attempt from IP address 187.216.0.158 on Port 445(SMB)	2019-08-18 05:10:55
94.176.0.61	attack	Unauthorised access (Aug 17) SRC=94.176.0.61 LEN=40 TTL=243 ID=45610 DF TCP DPT=23 WINDOW=14600 SYN Unauthorised access (Aug 17) SRC=94.176.0.61 LEN=40 TTL=243 ID=40365 DF TCP DPT=23 WINDOW=14600 SYN Unauthorised access (Aug 17) SRC=94.176.0.61 LEN=40 TTL=243 ID=65494 DF TCP DPT=23 WINDOW=14600 SYN Unauthorised access (Aug 17) SRC=94.176.0.61 LEN=40 TTL=243 ID=3556 DF TCP DPT=23 WINDOW=14600 SYN Unauthorised access (Aug 17) SRC=94.176.0.61 LEN=40 TTL=243 ID=45282 DF TCP DPT=23 WINDOW=14600 SYN Unauthorised access (Aug 17) SRC=94.176.0.61 LEN=40 TTL=243 ID=26410 DF TCP DPT=23 WINDOW=14600 SYN Unauthorised access (Aug 17) SRC=94.176.0.61 LEN=40 TTL=243 ID=40212 DF TCP DPT=23 WINDOW=14600 SYN Unauthorised access (Aug 17) SRC=94.176.0.61 LEN=40 TTL=243 ID=29159 DF TCP DPT=23 WINDOW=14600 SYN	2019-08-18 05:16:46
89.100.11.18	attackspambots	Aug 17 11:10:35 lcdev sshd\[30274\]: Invalid user terraria from 89.100.11.18 Aug 17 11:10:35 lcdev sshd\[30274\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.100.11.18 Aug 17 11:10:38 lcdev sshd\[30274\]: Failed password for invalid user terraria from 89.100.11.18 port 34132 ssh2 Aug 17 11:14:58 lcdev sshd\[30675\]: Invalid user test from 89.100.11.18 Aug 17 11:14:58 lcdev sshd\[30675\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.100.11.18	2019-08-18 05:33:26
170.83.155.210	attackbots	Aug 17 21:54:07 web sshd\[2501\]: Invalid user mcserver from 170.83.155.210 Aug 17 21:54:07 web sshd\[2501\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=170.83.155.210 Aug 17 21:54:09 web sshd\[2501\]: Failed password for invalid user mcserver from 170.83.155.210 port 38028 ssh2 Aug 17 21:59:13 web sshd\[2533\]: Invalid user client from 170.83.155.210 Aug 17 21:59:13 web sshd\[2533\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=170.83.155.210 ...	2019-08-18 05:46:51

Recently Reported IPs

185.236.231.55	68.249.34.187	105.82.203.93	2.129.39.16
136.227.143.119	161.66.214.107	193.169.212.68	193.169.212.25
193.169.212.26	101.51.235.195	59.24.200.235	193.169.212.65
193.169.212.107	120.239.196.97	78.189.233.150	193.169.212.82
193.169.212.49	193.169.212.101	58.71.87.101	84.241.29.130