114.45.2.94 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Taiwan, Province of China

Internet Service Provider: Chunghwa Telecom Co. Ltd.

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	Unauthorized connection attempt from IP address 114.45.2.94 on Port 445(SMB)	2019-07-02 05:29:49

Comments on same subnet:

IP	Type	Details	Datetime
114.45.252.179	attackbots	1582520237 - 02/24/2020 05:57:17 Host: 114.45.252.179/114.45.252.179 Port: 445 TCP Blocked	2020-02-24 14:08:41
114.45.224.160	attack	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-15 18:06:12
114.45.226.25	attackspambots	Unauthorized connection attempt detected from IP address 114.45.226.25 to port 23 [J]	2020-01-26 03:29:53
114.45.203.60	attackspambots	Jan 1 15:48:38 grey postfix/smtpd\[23722\]: NOQUEUE: reject: RCPT from 114-45-203-60.dynamic-ip.hinet.net\[114.45.203.60\]: 554 5.7.1 Service unavailable\; Client host \[114.45.203.60\] blocked using dul.dnsbl.sorbs.net\; Dynamic IP Addresses See: http://www.sorbs.net/lookup.shtml\?114.45.203.60\; from=\ to=\ proto=ESMTP helo=\<114-45-203-60.dynamic-ip.hinet.net\> ...	2020-01-02 02:22:59
114.45.235.58	attackspambots	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/114.45.235.58/ TW - 1H : (2990) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : TW NAME ASN : ASN3462 IP : 114.45.235.58 CIDR : 114.45.0.0/16 PREFIX COUNT : 390 UNIQUE IP COUNT : 12267520 WYKRYTE ATAKI Z ASN3462 : 1H - 304 3H - 1027 6H - 2187 12H - 2890 24H - 2899 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery	2019-09-24 01:30:54
114.45.226.99	attack	Port Scan: TCP/23	2019-09-03 02:07:46

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 114.45.2.94
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 1555
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;114.45.2.94.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019070102 1800 900 604800 86400

;; Query time: 3 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Tue Jul 02 05:29:43 CST 2019
;; MSG SIZE  rcvd: 115

Host info

94.2.45.114.in-addr.arpa domain name pointer 114-45-2-94.dynamic-ip.hinet.net.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
94.2.45.114.in-addr.arpa	name = 114-45-2-94.dynamic-ip.hinet.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
200.89.159.52	attack	May 16 02:23:46 ip-172-31-62-245 sshd\[31184\]: Invalid user evelyn from 200.89.159.52\ May 16 02:23:49 ip-172-31-62-245 sshd\[31184\]: Failed password for invalid user evelyn from 200.89.159.52 port 51764 ssh2\ May 16 02:28:13 ip-172-31-62-245 sshd\[31240\]: Invalid user student from 200.89.159.52\ May 16 02:28:15 ip-172-31-62-245 sshd\[31240\]: Failed password for invalid user student from 200.89.159.52 port 59108 ssh2\ May 16 02:32:36 ip-172-31-62-245 sshd\[31330\]: Failed password for root from 200.89.159.52 port 38220 ssh2\	2020-05-16 17:34:39
14.161.45.92	attack	Dovecot Invalid User Login Attempt.	2020-05-16 16:58:55
45.142.195.15	attack	Brute force attack	2020-05-16 16:57:02
167.71.254.95	attack	May 16 01:53:29 [host] sshd[3380]: pam_unix(sshd:a May 16 01:53:31 [host] sshd[3380]: Failed password May 16 01:57:04 [host] sshd[3579]: Invalid user sa	2020-05-16 17:33:48
159.65.155.33	attack	May 15 23:20:41 ns382633 sshd\[24711\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.155.33 user=root May 15 23:20:43 ns382633 sshd\[24711\]: Failed password for root from 159.65.155.33 port 44608 ssh2 May 15 23:23:00 ns382633 sshd\[24856\]: Invalid user nagios from 159.65.155.33 port 41432 May 15 23:23:00 ns382633 sshd\[24856\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.155.33 May 15 23:23:02 ns382633 sshd\[24856\]: Failed password for invalid user nagios from 159.65.155.33 port 41432 ssh2	2020-05-16 17:34:05
104.248.192.145	attackbots	...	2020-05-16 17:06:13
134.209.194.208	attackspambots	Too many connections or unauthorized access detected from Arctic banned ip	2020-05-16 17:29:19
123.206.190.82	attack	May 16 04:54:01 legacy sshd[4606]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.206.190.82 May 16 04:54:03 legacy sshd[4606]: Failed password for invalid user test from 123.206.190.82 port 37322 ssh2 May 16 04:55:52 legacy sshd[4713]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.206.190.82 ...	2020-05-16 16:55:49
62.210.114.58	attack	2020-05-16T02:42:15.060098shield sshd\[29027\]: Invalid user frappe from 62.210.114.58 port 37406 2020-05-16T02:42:15.071043shield sshd\[29027\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=62-210-114-58.rev.poneytelecom.eu 2020-05-16T02:42:17.100753shield sshd\[29027\]: Failed password for invalid user frappe from 62.210.114.58 port 37406 ssh2 2020-05-16T02:45:34.101189shield sshd\[30282\]: Invalid user user3 from 62.210.114.58 port 42496 2020-05-16T02:45:34.110313shield sshd\[30282\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=62-210-114-58.rev.poneytelecom.eu	2020-05-16 17:33:36
42.118.242.189	attackbotsspam	May 16 04:44:17 electroncash sshd[12948]: Invalid user fx from 42.118.242.189 port 48410 May 16 04:44:18 electroncash sshd[12948]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.118.242.189 May 16 04:44:17 electroncash sshd[12948]: Invalid user fx from 42.118.242.189 port 48410 May 16 04:44:19 electroncash sshd[12948]: Failed password for invalid user fx from 42.118.242.189 port 48410 ssh2 May 16 04:49:17 electroncash sshd[14288]: Invalid user scan from 42.118.242.189 port 55652 ...	2020-05-16 17:16:08
138.68.234.162	attackspambots	Invalid user aman from 138.68.234.162 port 36240	2020-05-16 17:14:27
101.91.198.130	attackbotsspam	May 16 04:46:07 OPSO sshd\[3012\]: Invalid user qili from 101.91.198.130 port 60034 May 16 04:46:07 OPSO sshd\[3012\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.91.198.130 May 16 04:46:09 OPSO sshd\[3012\]: Failed password for invalid user qili from 101.91.198.130 port 60034 ssh2 May 16 04:49:07 OPSO sshd\[3615\]: Invalid user bruno from 101.91.198.130 port 48090 May 16 04:49:07 OPSO sshd\[3615\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.91.198.130	2020-05-16 17:19:26
52.178.4.23	attackspam	Invalid user administrador from 52.178.4.23 port 49732	2020-05-16 16:57:30
51.91.250.197	attackspambots	Invalid user muni from 51.91.250.197 port 36962	2020-05-16 17:31:55
188.166.211.194	attack	May 16 04:48:05 buvik sshd[2287]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.166.211.194 May 16 04:48:06 buvik sshd[2287]: Failed password for invalid user apotre from 188.166.211.194 port 53347 ssh2 May 16 04:51:47 buvik sshd[2807]: Invalid user git from 188.166.211.194 ...	2020-05-16 17:12:22

Recently Reported IPs

179.193.109.140	73.113.237.161	172.29.165.181	135.176.235.235
59.127.88.136	174.113.197.247	226.41.65.209	127.29.109.215
46.71.33.34	207.46.13.160	196.119.210.149	166.106.78.72
125.212.182.151	127.37.241.191	128.127.8.242	251.198.71.18
163.13.64.28	209.97.157.254	188.53.37.251	185.248.160.231