Must be a valid IPv4 or IPv6 ip address, e.g. 127.0.0.1 or 2001:DB8:0:0:8:800:200C:417A
Basic Info

City: unknown

Region: unknown

Country: Romania

Internet Service Provider: SC Netsilvania Network SRL

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:
Type Details Datetime
attackbotsspam
xmlrpc attack
2019-12-23 07:51:16
attackbotsspam
C1,WP GET /wp-login.php
2019-12-02 00:10:25
attackbotsspam
Automatic report - Banned IP Access
2019-11-24 20:15:57
Comments on same subnet:
IP Type Details Datetime
45.14.148.141 attack
Invalid user www from 45.14.148.141 port 51550
2020-09-30 04:05:22
45.14.148.141 attackbots
Sep 29 09:46:55 dev0-dcde-rnet sshd[19775]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.14.148.141
Sep 29 09:46:57 dev0-dcde-rnet sshd[19775]: Failed password for invalid user postgres5 from 45.14.148.141 port 53390 ssh2
Sep 29 09:56:01 dev0-dcde-rnet sshd[19910]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.14.148.141
2020-09-29 20:12:09
45.14.148.141 attackspambots
Sep 29 01:16:02 myhostname sshd[7303]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.14.148.141  user=r.r
Sep 29 01:16:03 myhostname sshd[7303]: Failed password for r.r from 45.14.148.141 port 53122 ssh2
Sep 29 01:16:03 myhostname sshd[7303]: Received disconnect from 45.14.148.141 port 53122:11: Bye Bye [preauth]
Sep 29 01:16:03 myhostname sshd[7303]: Disconnected from 45.14.148.141 port 53122 [preauth]
Sep 29 01:28:04 myhostname sshd[20778]: Invalid user nagios3 from 45.14.148.141
Sep 29 01:28:04 myhostname sshd[20778]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.14.148.141


........
-----------------------------------------------
https://www.blocklist.de/en/view.html?ip=45.14.148.141
2020-09-29 12:19:48
45.14.148.141 attackbotsspam
Sep 26 15:50:49 mout sshd[7016]: Disconnected from invalid user storm 45.14.148.141 port 47714 [preauth]
Sep 26 15:58:47 mout sshd[7989]: Invalid user test2 from 45.14.148.141 port 44844
2020-09-27 06:46:11
45.14.148.141 attackspam
Sep 26 15:50:49 mout sshd[7016]: Disconnected from invalid user storm 45.14.148.141 port 47714 [preauth]
Sep 26 15:58:47 mout sshd[7989]: Invalid user test2 from 45.14.148.141 port 44844
2020-09-26 23:10:35
45.14.148.141 attack
Sep 25 22:44:19 h2646465 sshd[29358]: Invalid user weblogic from 45.14.148.141
Sep 25 22:44:19 h2646465 sshd[29358]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.14.148.141
Sep 25 22:44:19 h2646465 sshd[29358]: Invalid user weblogic from 45.14.148.141
Sep 25 22:44:21 h2646465 sshd[29358]: Failed password for invalid user weblogic from 45.14.148.141 port 48042 ssh2
Sep 25 22:55:55 h2646465 sshd[31066]: Invalid user ospite from 45.14.148.141
Sep 25 22:55:55 h2646465 sshd[31066]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.14.148.141
Sep 25 22:55:55 h2646465 sshd[31066]: Invalid user ospite from 45.14.148.141
Sep 25 22:55:57 h2646465 sshd[31066]: Failed password for invalid user ospite from 45.14.148.141 port 48194 ssh2
Sep 25 23:06:08 h2646465 sshd[32748]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.14.148.141  user=root
Sep 25 23:06:10 h2646465 sshd[32748]: Failed password
2020-09-26 14:58:51
45.14.148.191 attackbots
 TCP (SYN) 45.14.148.191:50832 -> port 22, len 44
2020-08-30 15:42:40
45.14.148.141 attack
Port scan denied
2020-08-15 14:28:01
45.14.148.95 attackspambots
Failed password for invalid user test from 45.14.148.95 port 48020 ssh2
Invalid user play from 45.14.148.95 port 43540
pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.14.148.95
Failed password for invalid user play from 45.14.148.95 port 43540 ssh2
Invalid user tjd from 45.14.148.95 port 39586
2020-07-16 08:02:39
45.14.148.95 attackspambots
Jul 15 01:25:00 h1745522 sshd[6026]: Invalid user idd from 45.14.148.95 port 39970
Jul 15 01:25:00 h1745522 sshd[6026]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.14.148.95
Jul 15 01:25:00 h1745522 sshd[6026]: Invalid user idd from 45.14.148.95 port 39970
Jul 15 01:25:01 h1745522 sshd[6026]: Failed password for invalid user idd from 45.14.148.95 port 39970 ssh2
Jul 15 01:28:45 h1745522 sshd[6604]: Invalid user xuy from 45.14.148.95 port 47142
Jul 15 01:28:45 h1745522 sshd[6604]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.14.148.95
Jul 15 01:28:45 h1745522 sshd[6604]: Invalid user xuy from 45.14.148.95 port 47142
Jul 15 01:28:48 h1745522 sshd[6604]: Failed password for invalid user xuy from 45.14.148.95 port 47142 ssh2
Jul 15 01:32:25 h1745522 sshd[7122]: Invalid user developer from 45.14.148.95 port 53726
...
2020-07-15 08:42:59
45.14.148.95 attackbots
Jul 13 05:44:43 ns382633 sshd\[31650\]: Invalid user farmacia from 45.14.148.95 port 48638
Jul 13 05:44:43 ns382633 sshd\[31650\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.14.148.95
Jul 13 05:44:45 ns382633 sshd\[31650\]: Failed password for invalid user farmacia from 45.14.148.95 port 48638 ssh2
Jul 13 05:56:05 ns382633 sshd\[1371\]: Invalid user orange from 45.14.148.95 port 34496
Jul 13 05:56:05 ns382633 sshd\[1371\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.14.148.95
2020-07-13 12:28:47
45.14.148.95 attackspam
Jul  9 07:27:41 vmd26974 sshd[16755]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.14.148.95
Jul  9 07:27:43 vmd26974 sshd[16755]: Failed password for invalid user znc from 45.14.148.95 port 59952 ssh2
...
2020-07-09 16:48:17
45.14.148.95 attackbots
Jul  6 23:34:30 inter-technics sshd[10133]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.14.148.95  user=root
Jul  6 23:34:32 inter-technics sshd[10133]: Failed password for root from 45.14.148.95 port 57130 ssh2
Jul  6 23:38:08 inter-technics sshd[10366]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.14.148.95  user=root
Jul  6 23:38:09 inter-technics sshd[10366]: Failed password for root from 45.14.148.95 port 33586 ssh2
Jul  6 23:41:43 inter-technics sshd[10648]: Invalid user testsftp from 45.14.148.95 port 37868
...
2020-07-07 06:33:43
45.14.148.95 attack
SSH auth scanning - multiple failed logins
2020-06-26 04:05:11
45.14.148.95 attack
SSH Brute-Force attacks
2020-06-19 16:42:52
Whois info:
b
Dig info:

; <<>> DiG 9.11.4-P2-RedHat-9.11.4-9.P2.el7 <<>> 45.14.148.97
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 30107
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;45.14.148.97.			IN	A

;; AUTHORITY SECTION:
.			10800	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019112400 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 100.100.2.136#53(100.100.2.136)
;; WHEN: Sun Nov 24 20:20:06 CST 2019
;; MSG SIZE  rcvd: 116

Host info
Host 97.148.14.45.in-addr.arpa. not found: 3(NXDOMAIN)
Nslookup info:
Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 97.148.14.45.in-addr.arpa: NXDOMAIN
Related IP info:
Related comments:
IP Type Details Datetime
139.59.57.90 attackbotsspam
[TueMay0519:57:55.9326422020][:error][pid6137:tid47057618355968][client139.59.57.90:45347][client139.59.57.90]ModSecurity:Accessdeniedwithcode403\(phase2\).OperatorEQmatched0atARGS.[file"/etc/apache2/conf.d/modsec_rules/99_asl_jitp.conf"][line"812"][id"337469"][rev"3"][msg"Atomicorp.comWAFRules-VirtualJustInTimePatch:WordpressRevslideruploadAttack"][severity"CRITICAL"][hostname"startappsa.ch"][uri"/wp-admin/admin-ajax.php"][unique_id"XrGpI9WnRIZOpTIBXYvzxwAAAJA"][TueMay0519:57:56.7003372020][:error][pid32226:tid47057526859520][client139.59.57.90:45359][client139.59.57.90]ModSecurity:Accessdeniedwithcode403\(phase2\).Patternmatch"\\\\\\\\.php"atARGS:img.[file"/etc/apache2/conf.d/modsec_rules/99_asl_jitp.conf"][line"819"][id"337479"][rev"2"][msg"Atomicorp.comWAFRules-VirtualJustInTimePatch:WordpressRevslidernon-imagefiledownloadAttack"][severity"CRITICAL"][hostname"startappsa.ch"][uri"/wp-admin/admin-ajax.php"][unique_id"XrGpJGEZB21QJVJ32eykWAAAAUU"]
2020-05-06 02:05:23
124.88.112.30 attack
Scanning
2020-05-06 01:44:24
104.206.128.38 attack
Automatic report - Banned IP Access
2020-05-06 02:15:37
198.108.66.228 attack
05/05/2020-13:39:49.630832 198.108.66.228 Protocol: 6 ET SCAN NMAP -sS window 1024
2020-05-06 01:58:08
106.12.79.160 attackbots
SSH Brute-Force reported by Fail2Ban
2020-05-06 02:09:23
213.217.0.132 attackbotsspam
May  5 19:03:05 debian-2gb-nbg1-2 kernel: \[10957078.680163\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=213.217.0.132 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=245 ID=11402 PROTO=TCP SPT=43963 DPT=55149 WINDOW=1024 RES=0x00 SYN URGP=0
2020-05-06 01:47:27
192.241.235.11 attackspambots
2020-05-05T13:57:59.923429mail.thespaminator.com sshd[11210]: Invalid user jyothi from 192.241.235.11 port 38396
2020-05-05T13:58:02.120285mail.thespaminator.com sshd[11210]: Failed password for invalid user jyothi from 192.241.235.11 port 38396 ssh2
...
2020-05-06 02:02:08
67.205.133.42 attackspambots
Scanning
2020-05-06 01:38:48
222.186.15.10 attackspambots
2020-05-05T19:57:58.181264sd-86998 sshd[39160]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.15.10  user=root
2020-05-05T19:58:00.222542sd-86998 sshd[39160]: Failed password for root from 222.186.15.10 port 62672 ssh2
2020-05-05T19:58:03.199553sd-86998 sshd[39160]: Failed password for root from 222.186.15.10 port 62672 ssh2
2020-05-05T19:57:58.181264sd-86998 sshd[39160]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.15.10  user=root
2020-05-05T19:58:00.222542sd-86998 sshd[39160]: Failed password for root from 222.186.15.10 port 62672 ssh2
2020-05-05T19:58:03.199553sd-86998 sshd[39160]: Failed password for root from 222.186.15.10 port 62672 ssh2
2020-05-05T19:57:58.181264sd-86998 sshd[39160]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.15.10  user=root
2020-05-05T19:58:00.222542sd-86998 sshd[39160]: Failed password for root from 222.186
...
2020-05-06 01:59:23
54.37.163.11 attack
May  5 18:39:19 v22019038103785759 sshd\[19520\]: Invalid user cloud from 54.37.163.11 port 36664
May  5 18:39:19 v22019038103785759 sshd\[19520\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.37.163.11
May  5 18:39:21 v22019038103785759 sshd\[19520\]: Failed password for invalid user cloud from 54.37.163.11 port 36664 ssh2
May  5 18:42:57 v22019038103785759 sshd\[19767\]: Invalid user admin from 54.37.163.11 port 46400
May  5 18:42:57 v22019038103785759 sshd\[19767\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.37.163.11
...
2020-05-06 01:39:59
125.161.130.64 attack
Honeypot attack, port: 445, PTR: 64.subnet125-161-130.speedy.telkom.net.id.
2020-05-06 01:42:56
58.222.107.16 attackspambots
[Tue May 05 16:45:18 2020] - DDoS Attack From IP: 58.222.107.16 Port: 46187
2020-05-06 01:36:34
182.61.175.36 attackbotsspam
May  5 16:20:24 pve1 sshd[12810]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.175.36 
May  5 16:20:26 pve1 sshd[12810]: Failed password for invalid user matilde from 182.61.175.36 port 40146 ssh2
...
2020-05-06 01:45:39
139.59.3.114 attackspambots
May  5 14:54:33 ncomp sshd[21877]: Invalid user lolo from 139.59.3.114
May  5 14:54:33 ncomp sshd[21877]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.3.114
May  5 14:54:33 ncomp sshd[21877]: Invalid user lolo from 139.59.3.114
May  5 14:54:35 ncomp sshd[21877]: Failed password for invalid user lolo from 139.59.3.114 port 43232 ssh2
2020-05-06 01:55:36
45.58.135.211 attackbotsspam
spam`
2020-05-06 02:03:49

Recently Reported IPs

154.205.181.160 185.245.87.209 222.121.254.80 185.173.205.141
198.23.223.172 159.65.49.251 35.188.6.13 176.95.159.105
121.54.174.31 187.215.13.179 122.160.122.49 69.104.27.206
169.164.141.10 181.228.54.23 149.220.89.121 70.187.77.181
212.238.175.18 112.161.245.102 230.232.249.237 10.103.163.88