45.14.148.97 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Romania

Internet Service Provider: SC Netsilvania Network SRL

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbotsspam	xmlrpc attack	2019-12-23 07:51:16
attackbotsspam	C1,WP GET /wp-login.php	2019-12-02 00:10:25
attackbotsspam	Automatic report - Banned IP Access	2019-11-24 20:15:57

Comments on same subnet:

IP	Type	Details	Datetime
45.14.148.141	attack	Invalid user www from 45.14.148.141 port 51550	2020-09-30 04:05:22
45.14.148.141	attackbots	Sep 29 09:46:55 dev0-dcde-rnet sshd[19775]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.14.148.141 Sep 29 09:46:57 dev0-dcde-rnet sshd[19775]: Failed password for invalid user postgres5 from 45.14.148.141 port 53390 ssh2 Sep 29 09:56:01 dev0-dcde-rnet sshd[19910]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.14.148.141	2020-09-29 20:12:09
45.14.148.141	attackspambots	Sep 29 01:16:02 myhostname sshd[7303]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.14.148.141 user=r.r Sep 29 01:16:03 myhostname sshd[7303]: Failed password for r.r from 45.14.148.141 port 53122 ssh2 Sep 29 01:16:03 myhostname sshd[7303]: Received disconnect from 45.14.148.141 port 53122:11: Bye Bye [preauth] Sep 29 01:16:03 myhostname sshd[7303]: Disconnected from 45.14.148.141 port 53122 [preauth] Sep 29 01:28:04 myhostname sshd[20778]: Invalid user nagios3 from 45.14.148.141 Sep 29 01:28:04 myhostname sshd[20778]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.14.148.141 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=45.14.148.141	2020-09-29 12:19:48
45.14.148.141	attackbotsspam	Sep 26 15:50:49 mout sshd[7016]: Disconnected from invalid user storm 45.14.148.141 port 47714 [preauth] Sep 26 15:58:47 mout sshd[7989]: Invalid user test2 from 45.14.148.141 port 44844	2020-09-27 06:46:11
45.14.148.141	attackspam	Sep 26 15:50:49 mout sshd[7016]: Disconnected from invalid user storm 45.14.148.141 port 47714 [preauth] Sep 26 15:58:47 mout sshd[7989]: Invalid user test2 from 45.14.148.141 port 44844	2020-09-26 23:10:35
45.14.148.141	attack	Sep 25 22:44:19 h2646465 sshd[29358]: Invalid user weblogic from 45.14.148.141 Sep 25 22:44:19 h2646465 sshd[29358]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.14.148.141 Sep 25 22:44:19 h2646465 sshd[29358]: Invalid user weblogic from 45.14.148.141 Sep 25 22:44:21 h2646465 sshd[29358]: Failed password for invalid user weblogic from 45.14.148.141 port 48042 ssh2 Sep 25 22:55:55 h2646465 sshd[31066]: Invalid user ospite from 45.14.148.141 Sep 25 22:55:55 h2646465 sshd[31066]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.14.148.141 Sep 25 22:55:55 h2646465 sshd[31066]: Invalid user ospite from 45.14.148.141 Sep 25 22:55:57 h2646465 sshd[31066]: Failed password for invalid user ospite from 45.14.148.141 port 48194 ssh2 Sep 25 23:06:08 h2646465 sshd[32748]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.14.148.141 user=root Sep 25 23:06:10 h2646465 sshd[32748]: Failed password	2020-09-26 14:58:51
45.14.148.191	attackbots	TCP (SYN) 45.14.148.191:50832 -> port 22, len 44	2020-08-30 15:42:40
45.14.148.141	attack	Port scan denied	2020-08-15 14:28:01
45.14.148.95	attackspambots	Failed password for invalid user test from 45.14.148.95 port 48020 ssh2 Invalid user play from 45.14.148.95 port 43540 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.14.148.95 Failed password for invalid user play from 45.14.148.95 port 43540 ssh2 Invalid user tjd from 45.14.148.95 port 39586	2020-07-16 08:02:39
45.14.148.95	attackspambots	Jul 15 01:25:00 h1745522 sshd[6026]: Invalid user idd from 45.14.148.95 port 39970 Jul 15 01:25:00 h1745522 sshd[6026]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.14.148.95 Jul 15 01:25:00 h1745522 sshd[6026]: Invalid user idd from 45.14.148.95 port 39970 Jul 15 01:25:01 h1745522 sshd[6026]: Failed password for invalid user idd from 45.14.148.95 port 39970 ssh2 Jul 15 01:28:45 h1745522 sshd[6604]: Invalid user xuy from 45.14.148.95 port 47142 Jul 15 01:28:45 h1745522 sshd[6604]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.14.148.95 Jul 15 01:28:45 h1745522 sshd[6604]: Invalid user xuy from 45.14.148.95 port 47142 Jul 15 01:28:48 h1745522 sshd[6604]: Failed password for invalid user xuy from 45.14.148.95 port 47142 ssh2 Jul 15 01:32:25 h1745522 sshd[7122]: Invalid user developer from 45.14.148.95 port 53726 ...	2020-07-15 08:42:59
45.14.148.95	attackbots	Jul 13 05:44:43 ns382633 sshd\[31650\]: Invalid user farmacia from 45.14.148.95 port 48638 Jul 13 05:44:43 ns382633 sshd\[31650\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.14.148.95 Jul 13 05:44:45 ns382633 sshd\[31650\]: Failed password for invalid user farmacia from 45.14.148.95 port 48638 ssh2 Jul 13 05:56:05 ns382633 sshd\[1371\]: Invalid user orange from 45.14.148.95 port 34496 Jul 13 05:56:05 ns382633 sshd\[1371\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.14.148.95	2020-07-13 12:28:47
45.14.148.95	attackspam	Jul 9 07:27:41 vmd26974 sshd[16755]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.14.148.95 Jul 9 07:27:43 vmd26974 sshd[16755]: Failed password for invalid user znc from 45.14.148.95 port 59952 ssh2 ...	2020-07-09 16:48:17
45.14.148.95	attackbots	Jul 6 23:34:30 inter-technics sshd[10133]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.14.148.95 user=root Jul 6 23:34:32 inter-technics sshd[10133]: Failed password for root from 45.14.148.95 port 57130 ssh2 Jul 6 23:38:08 inter-technics sshd[10366]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.14.148.95 user=root Jul 6 23:38:09 inter-technics sshd[10366]: Failed password for root from 45.14.148.95 port 33586 ssh2 Jul 6 23:41:43 inter-technics sshd[10648]: Invalid user testsftp from 45.14.148.95 port 37868 ...	2020-07-07 06:33:43
45.14.148.95	attack	SSH auth scanning - multiple failed logins	2020-06-26 04:05:11
45.14.148.95	attack	SSH Brute-Force attacks	2020-06-19 16:42:52

Whois info:

Dig info:


; <<>> DiG 9.11.4-P2-RedHat-9.11.4-9.P2.el7 <<>> 45.14.148.97
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 30107
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;45.14.148.97.			IN	A

;; AUTHORITY SECTION:
.			10800	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019112400 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 100.100.2.136#53(100.100.2.136)
;; WHEN: Sun Nov 24 20:20:06 CST 2019
;; MSG SIZE  rcvd: 116

Host info

Host 97.148.14.45.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 97.148.14.45.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
89.238.190.127	attackspambots	Honeypot attack, port: 445, PTR: smtpout.netdatatel.co.uk.	2019-10-28 16:10:42
185.167.98.200	attack	Honeypot attack, port: 445, PTR: PTR record not found	2019-10-28 16:09:27
185.176.27.178	attack	Oct 28 09:16:17 mc1 kernel: \[3536907.777549\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=185.176.27.178 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=50300 PROTO=TCP SPT=44870 DPT=45518 WINDOW=1024 RES=0x00 SYN URGP=0 Oct 28 09:16:19 mc1 kernel: \[3536909.449942\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=185.176.27.178 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=62600 PROTO=TCP SPT=44870 DPT=40966 WINDOW=1024 RES=0x00 SYN URGP=0 Oct 28 09:17:53 mc1 kernel: \[3537003.402460\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=185.176.27.178 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=16933 PROTO=TCP SPT=44870 DPT=44519 WINDOW=1024 RES=0x00 SYN URGP=0 ...	2019-10-28 16:30:24
45.233.104.175	attack	Honeypot attack, port: 23, PTR: PTR record not found	2019-10-28 16:19:39
183.82.98.9	attackbots	Honeypot attack, port: 445, PTR: broadband.actcorp.in.	2019-10-28 16:06:52
83.194.17.246	attackbots	2019-10-28T04:50:18.845047stark.klein-stark.info sshd\[21537\]: Invalid user pi from 83.194.17.246 port 44956 2019-10-28T04:50:18.845048stark.klein-stark.info sshd\[21538\]: Invalid user pi from 83.194.17.246 port 44960 2019-10-28T04:50:18.968429stark.klein-stark.info sshd\[21537\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=lfbn-ncy-1-80-246.w83-194.abo.wanadoo.fr 2019-10-28T04:50:18.969811stark.klein-stark.info sshd\[21538\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=lfbn-ncy-1-80-246.w83-194.abo.wanadoo.fr ...	2019-10-28 16:28:31
85.37.38.195	attackbotsspam	Automatic report - Banned IP Access	2019-10-28 16:05:09
190.34.184.214	attackspambots	Automatic report - SSH Brute-Force Attack	2019-10-28 16:21:07
222.186.173.215	attackbots	Oct 28 08:55:06 dedicated sshd[5062]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.173.215 user=root Oct 28 08:55:08 dedicated sshd[5062]: Failed password for root from 222.186.173.215 port 31450 ssh2	2019-10-28 16:03:24
222.186.169.192	attack	Oct 28 05:24:51 firewall sshd[17884]: Failed password for root from 222.186.169.192 port 29804 ssh2 Oct 28 05:25:02 firewall sshd[17884]: error: maximum authentication attempts exceeded for root from 222.186.169.192 port 29804 ssh2 [preauth] Oct 28 05:25:02 firewall sshd[17884]: Disconnecting: Too many authentication failures [preauth] ...	2019-10-28 16:28:01
51.68.143.28	attack	Oct 27 20:03:13 hpm sshd\[3175\]: Invalid user zole from 51.68.143.28 Oct 27 20:03:13 hpm sshd\[3175\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=28.ip-51-68-143.eu Oct 27 20:03:15 hpm sshd\[3175\]: Failed password for invalid user zole from 51.68.143.28 port 57264 ssh2 Oct 27 20:07:12 hpm sshd\[3500\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=28.ip-51-68-143.eu user=root Oct 27 20:07:13 hpm sshd\[3500\]: Failed password for root from 51.68.143.28 port 39098 ssh2	2019-10-28 16:05:37
145.239.196.2	attackspambots	Oct 28 08:48:26 SilenceServices sshd[27283]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=145.239.196.2 Oct 28 08:48:28 SilenceServices sshd[27283]: Failed password for invalid user drschwan from 145.239.196.2 port 51832 ssh2 Oct 28 08:51:53 SilenceServices sshd[29436]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=145.239.196.2	2019-10-28 16:03:09
197.156.67.251	attackbotsspam	2019-10-18T02:13:42.332498ns525875 sshd\[1454\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=197.156.67.251 user=root 2019-10-18T02:13:44.655167ns525875 sshd\[1454\]: Failed password for root from 197.156.67.251 port 51982 ssh2 2019-10-18T02:18:21.041742ns525875 sshd\[7140\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=197.156.67.251 user=root 2019-10-18T02:18:22.998193ns525875 sshd\[7140\]: Failed password for root from 197.156.67.251 port 37936 ssh2 2019-10-18T02:22:56.078948ns525875 sshd\[12807\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=197.156.67.251 user=root 2019-10-18T02:22:58.118636ns525875 sshd\[12807\]: Failed password for root from 197.156.67.251 port 54212 ssh2 2019-10-18T02:27:34.142977ns525875 sshd\[18491\]: Invalid user bob from 197.156.67.251 port 42856 2019-10-18T02:27:34.146962ns525875 sshd\[18491\]: pam_unix\(sshd:auth\): ...	2019-10-28 16:28:47
165.227.211.13	attackbotsspam	SSH authentication failure x 6 reported by Fail2Ban ...	2019-10-28 16:31:51
111.230.227.17	attack	2019-10-04T15:56:48.070116ns525875 sshd\[24856\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.230.227.17 user=root 2019-10-04T15:56:50.881409ns525875 sshd\[24856\]: Failed password for root from 111.230.227.17 port 42060 ssh2 2019-10-04T16:04:34.821129ns525875 sshd\[2197\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.230.227.17 user=root 2019-10-04T16:04:36.939784ns525875 sshd\[2197\]: Failed password for root from 111.230.227.17 port 38366 ssh2 2019-10-04T16:07:21.108692ns525875 sshd\[5839\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.230.227.17 user=root 2019-10-04T16:07:23.150642ns525875 sshd\[5839\]: Failed password for root from 111.230.227.17 port 50922 ssh2 2019-10-04T16:10:06.181043ns525875 sshd\[9209\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.230.227.17 user=root 2019 ...	2019-10-28 16:16:52

Recently Reported IPs

154.205.181.160	185.245.87.209	222.121.254.80	185.173.205.141
198.23.223.172	159.65.49.251	35.188.6.13	176.95.159.105
121.54.174.31	187.215.13.179	122.160.122.49	69.104.27.206
169.164.141.10	181.228.54.23	149.220.89.121	70.187.77.181
212.238.175.18	112.161.245.102	230.232.249.237	10.103.163.88