JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 45.89.53.14

45.89.53.14 was found in our database!

This IP was reported 141 times. Confidence of Abuse is 0%: ?

ISP	Perviy TSOD LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	Unknown
Domain Name	o2dc.com
Country	🇺🇸 United States of America
City	Secaucus, New Jersey

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 45.89.53.14

Whois 45.89.53.14

IP Abuse Reports for 45.89.53.14:

This IP address has been reported a total of 141 times from 108 distinct sources. 45.89.53.14 was first reported on March 11th 2026, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇧🇷 helix	2026-04-10 06:23:28 (1 month ago)	Automated report: SSH brute force detected. This IP exceeded the allowed number of failed login atte ... show more Automated report: SSH brute force detected. This IP exceeded the allowed number of failed login attempts (3 attempts). show less	Brute-Force SSH
🇩🇪 sh97	2026-03-26 01:48:19 (2 months ago)	Auto-Install-Ubuntu-Server-24: SSH Brute Force from 45.89.53.14 at 2026-03-26 07:18:18 IST	Brute-Force SSH
🇩🇪 sh97	2026-03-25 06:16:17 (2 months ago)	Auto-Install-Ubuntu-Server-24: SSH Brute Force from 45.89.53.14 at 2026-03-25 11:46:17 IST	Brute-Force SSH
🇫🇷 SpaceHost-Server	2026-03-14 02:11:36 (2 months ago)		Brute-Force Web App Attack
🇹🇷 rtbh.com.tr	2026-03-13 20:12:02 (2 months ago)	list.rtbh.com.tr report: tcp/0	Brute-Force
🇹🇷 rtbh.com.tr	2026-03-12 20:12:01 (2 months ago)	list.rtbh.com.tr report: tcp/0	Brute-Force
🇩🇪 nicosqc	2026-03-12 03:51:53 (2 months ago)	Invalid user ryan from 45.89.53.14 port 39500	Brute-Force SSH
🇩🇪 nicosqc	2026-03-12 03:51:53 (2 months ago)	Invalid user ryan from 45.89.53.14 port 39500	Brute-Force SSH
🇺🇸 psh-ack	2026-03-12 03:49:37 (2 months ago)	Attempted credential compromise via libssh client using 3 weak cred pairs (David/Davidpass, David/32 ... show more Attempted credential compromise via libssh client using 3 weak cred pairs (David/Davidpass, David/3245gs5662d34, 345gs5662d34/345gs5662d34). Successfully authenticated and executed SSH key injection attack. Commands: (1) removed .ssh dir, created new one, injected malicious RSA pubkey AAAAB3NzaC1yc2EAAAABJQAAAQEArDp4cun2lhr4KUhBGE7VvAcwdli2a8dbnrTOrbMz1+5O73fcBOx8NVbUT0bUanUV9tJ2/9p7+vD0EpZ3Tz/+0kX34uAx1RV/75GVOmNx+9EuWOnvNoaJe0QXx into authorized_keys for persistent access. (2) Attempted chattr to remove immutable attrs on .ssh, then invoked 'lockr' cmd (persistence/priv esc tool). Attack establishes post-auth persistence without payload dl. File attr manipulation prevents legitimate user cleanup of injected keys. 3 sessions in 6 secs suggests automated exploitation tool. Key injection enables return access via private key without valid creds. High risk for continued unauthorized access. No lateral movement, port forwarding, or malware observed during capture, but persistence mechanism established. show less	Brute-Force SSH
🇳🇱 StopAbuse	2026-03-12 03:37:04 (2 months ago)	tcp/22	Port Scan SSH
🇫🇷 EggEek	2026-03-12 03:21:10 (2 months ago)	2026-03-12T03:17:45.562405+00:00 hyperion sshd[3356836]: pam_unix(sshd:auth): authentication failure ... show more 2026-03-12T03:17:45.562405+00:00 hyperion sshd[3356836]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.89.53.14 2026-03-12T03:17:47.509835+00:00 hyperion sshd[3356836]: Failed password for invalid user ljj from 45.89.53.14 port 56176 ssh2 2026-03-12T03:19:27.529943+00:00 hyperion sshd[3356971]: Connection from 45.89.53.14 port 55914 on 91.121.149.190 port 1122 rdomain "" 2026-03-12T03:19:28.037819+00:00 hyperion sshd[3356971]: Invalid user test from 45.89.53.14 port 55914 2026-03-12T03:19:28.041681+00:00 hyperion sshd[3356971]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.89.53.14 2026-03-12T03:19:29.798256+00:00 hyperion sshd[3356971]: Failed password for invalid user test from 45.89.53.14 port 55914 ssh2 2026-03-12T03:21:07.469815+00:00 hyperion sshd[3357124]: Connection from 45.89.53.14 port 51706 on 91.121.149.190 port 1122 rdomain "" 2026-03-12T03:21:07.960717+00:00 hyperion sshd[3357124]: ... show less	Brute-Force SSH
Anonymous	2026-03-12 03:21:06 (2 months ago)	2026-03-12T04:13:37.594946+01:00 server1.office.primef.actor sshd-session[448215]: Invalid user ryan ... show more 2026-03-12T04:13:37.594946+01:00 server1.office.primef.actor sshd-session[448215]: Invalid user ryan from 45.89.53.14 port 34536 2026-03-12T04:15:49.936137+01:00 server1.office.primef.actor sshd-session[448258]: Invalid user bot1 from 45.89.53.14 port 36216 2026-03-12T04:17:42.627894+01:00 server1.office.primef.actor sshd-session[448285]: Invalid user ljj from 45.89.53.14 port 36588 2026-03-12T04:19:25.640768+01:00 server1.office.primef.actor sshd-session[448306]: Invalid user test from 45.89.53.14 port 52850 2026-03-12T04:21:05.808928+01:00 server1.office.primef.actor sshd-session[448323]: Invalid user maarch from 45.89.53.14 port 37446 ... show less	Brute-Force SSH
🇺🇸 bigscoots.com	2026-03-12 03:17:02 (2 months ago)	(sshd) Failed SSH login from 45.89.53.14 (US/United States/vm15358201.example.com): 5 in the last 36 ... show more (sshd) Failed SSH login from 45.89.53.14 (US/United States/vm15358201.example.com): 5 in the last 3600 secs; Ports: *; Direction: 1; Trigger: LF_SSHD; Logs: Mar 11 22:10:50 14219 sshd[3039]: Invalid user ryan from 45.89.53.14 port 34888 Mar 11 22:10:51 14219 sshd[3039]: Failed password for invalid user ryan from 45.89.53.14 port 34888 ssh2 Mar 11 22:15:04 14219 sshd[3404]: Invalid user bot1 from 45.89.53.14 port 39598 Mar 11 22:15:05 14219 sshd[3404]: Failed password for invalid user bot1 from 45.89.53.14 port 39598 ssh2 Mar 11 22:16:56 14219 sshd[3501]: Invalid user ljj from 45.89.53.14 port 44918 show less	Brute-Force SSH
🇩🇪 sh97	2026-03-12 03:16:41 (2 months ago)	Auto-Install-Ubuntu-Server-24: SSH Brute Force from 45.89.53.14 at 2026-03-12 08:46:37 IST	Brute-Force SSH
🇩🇪 marcel-knorr.de	2026-03-12 03:16:19 (2 months ago)	[MK-Root1] SSH login failed	Brute-Force SSH

Showing 1 to 15 of 141 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 175.174.42.66

🇺🇸 137.184.13.100

🇺🇿 213.230.87.13

🇷🇺 188.232.100.14

🇷🇺 93.171.47.168

🇨🇳 39.69.202.75

🇰🇿 37.150.0.218

🇩🇪 213.209.159.241

🇧🇴 200.110.60.211

🇺🇿 188.113.193.141

🇳🇱 89.21.67.158

🇬🇧 51.195.244.44

🇳🇱 45.148.10.141

🇦🇺 20.58.164.80

🇮🇳 122.166.252.192

🇸🇬 107.150.112.48

🇭🇰 103.253.239.70

🇮🇳 103.217.247.26

🇺🇸 57.151.99.52

🇳🇱 45.148.10.189