114.45.69.72 - IPInfo

Basic Info

City: Taipei

Region: Taipei City

Country: Taiwan, China

Internet Service Provider: Chunghwa Telecom Co. Ltd.

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Unauthorized connection attempt from IP address 114.45.69.72 on Port 445(SMB)	2019-11-11 00:09:32

Comments on same subnet:

IP	Type	Details	Datetime
114.45.69.122	attackbots	Caught in portsentry honeypot	2019-08-12 15:26:22
114.45.69.245	attackbots	19/6/28@09:41:49: FAIL: IoT-Telnet address from=114.45.69.245 ...	2019-06-29 03:38:49

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 114.45.69.72
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 57184
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;114.45.69.72.			IN	A

;; AUTHORITY SECTION:
.			478	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019111000 1800 900 604800 86400

;; Query time: 128 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Nov 11 00:09:25 CST 2019
;; MSG SIZE  rcvd: 116

Host info

72.69.45.114.in-addr.arpa domain name pointer 114-45-69-72.dynamic-ip.hinet.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
72.69.45.114.in-addr.arpa	name = 114-45-69-72.dynamic-ip.hinet.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
80.82.77.234	attackbots	04/02/2020-04:31:24.444571 80.82.77.234 Protocol: 6 ET SCAN NMAP -sS window 1024	2020-04-02 17:17:20
45.133.99.6	attackspambots	Apr 2 10:58:38 relay postfix/smtpd\[21100\]: warning: unknown\[45.133.99.6\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Apr 2 10:58:58 relay postfix/smtpd\[21020\]: warning: unknown\[45.133.99.6\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Apr 2 11:06:59 relay postfix/smtpd\[21070\]: warning: unknown\[45.133.99.6\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Apr 2 11:07:18 relay postfix/smtpd\[21068\]: warning: unknown\[45.133.99.6\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Apr 2 11:12:51 relay postfix/smtpd\[21070\]: warning: unknown\[45.133.99.6\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-04-02 17:27:13
148.70.178.70	attackspam	Apr 2 05:46:33 meumeu sshd[20472]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.178.70 Apr 2 05:46:35 meumeu sshd[20472]: Failed password for invalid user va from 148.70.178.70 port 59240 ssh2 Apr 2 05:52:46 meumeu sshd[21339]: Failed password for root from 148.70.178.70 port 41784 ssh2 ...	2020-04-02 17:45:24
150.109.126.175	attackspam	2020-04-02T09:20:08.801422randservbullet-proofcloud-66.localdomain sshd[419]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=150.109.126.175 user=root 2020-04-02T09:20:10.368494randservbullet-proofcloud-66.localdomain sshd[419]: Failed password for root from 150.109.126.175 port 56454 ssh2 2020-04-02T09:22:52.040394randservbullet-proofcloud-66.localdomain sshd[435]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=150.109.126.175 user=root 2020-04-02T09:22:54.123992randservbullet-proofcloud-66.localdomain sshd[435]: Failed password for root from 150.109.126.175 port 39104 ssh2 ...	2020-04-02 17:30:40
69.94.131.42	attackspambots	Apr 2 04:09:55 web01 postfix/smtpd[14004]: warning: hostname 69-94-131-42.nca.datanoc.com does not resolve to address 69.94.131.42 Apr 2 04:09:55 web01 postfix/smtpd[14004]: connect from unknown[69.94.131.42] Apr 2 04:09:55 web01 policyd-spf[14007]: None; identhostnamey=helo; client-ip=69.94.131.42; helo=righteous.gpslens.co; envelope-from=x@x Apr 2 04:09:55 web01 policyd-spf[14007]: Pass; identhostnamey=mailfrom; client-ip=69.94.131.42; helo=righteous.gpslens.co; envelope-from=x@x Apr x@x Apr 2 04:09:55 web01 postfix/smtpd[14004]: disconnect from unknown[69.94.131.42] Apr 2 04:11:05 web01 postfix/smtpd[13729]: warning: hostname 69-94-131-42.nca.datanoc.com does not resolve to address 69.94.131.42 Apr 2 04:11:05 web01 postfix/smtpd[13729]: connect from unknown[69.94.131.42] Apr 2 04:11:05 web01 policyd-spf[14191]: None; identhostnamey=helo; client-ip=69.94.131.42; helo=righteous.gpslens.co; envelope-from=x@x Apr 2 04:11:05 web01 policyd-spf[14191]: Pass; identh........ -------------------------------	2020-04-02 17:23:25
122.51.82.22	attackbotsspam	Apr 2 01:13:58 lanister sshd[20467]: Invalid user test from 122.51.82.22 Apr 2 01:13:58 lanister sshd[20467]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.82.22 Apr 2 01:13:58 lanister sshd[20467]: Invalid user test from 122.51.82.22 Apr 2 01:13:59 lanister sshd[20467]: Failed password for invalid user test from 122.51.82.22 port 38354 ssh2	2020-04-02 17:42:20
78.128.113.82	attack	Apr 2 11:08:38 relay postfix/smtpd\[21100\]: warning: unknown\[78.128.113.82\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Apr 2 11:08:38 relay postfix/smtpd\[21070\]: warning: unknown\[78.128.113.82\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Apr 2 11:08:56 relay postfix/smtpd\[21068\]: warning: unknown\[78.128.113.82\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Apr 2 11:10:16 relay postfix/smtpd\[21068\]: warning: unknown\[78.128.113.82\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Apr 2 11:10:34 relay postfix/smtpd\[21068\]: warning: unknown\[78.128.113.82\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-04-02 17:19:26
222.136.158.195	attackbots	Unauthorised access (Apr 2) SRC=222.136.158.195 LEN=40 TTL=50 ID=64774 TCP DPT=23 WINDOW=50924 SYN	2020-04-02 17:53:59
14.184.108.55	attack	Brute force attempt	2020-04-02 17:52:50
180.180.127.194	attackbots	Unauthorized connection attempt detected from IP address 180.180.127.194 to port 445	2020-04-02 17:48:22
51.75.27.239	attack	Apr 2 08:45:37 pve sshd[16062]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.75.27.239 Apr 2 08:45:40 pve sshd[16062]: Failed password for invalid user oracle from 51.75.27.239 port 41533 ssh2 Apr 2 08:55:19 pve sshd[17524]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.75.27.239	2020-04-02 17:43:55
116.12.52.141	attackspam	Apr 2 11:16:04 h1745522 sshd[16560]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.12.52.141 user=root Apr 2 11:16:05 h1745522 sshd[16560]: Failed password for root from 116.12.52.141 port 38917 ssh2 Apr 2 11:19:55 h1745522 sshd[16794]: Invalid user sy from 116.12.52.141 port 39874 Apr 2 11:19:55 h1745522 sshd[16794]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.12.52.141 Apr 2 11:19:55 h1745522 sshd[16794]: Invalid user sy from 116.12.52.141 port 39874 Apr 2 11:19:57 h1745522 sshd[16794]: Failed password for invalid user sy from 116.12.52.141 port 39874 ssh2 Apr 2 11:23:46 h1745522 sshd[16917]: Invalid user sy from 116.12.52.141 port 40836 Apr 2 11:23:46 h1745522 sshd[16917]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.12.52.141 Apr 2 11:23:46 h1745522 sshd[16917]: Invalid user sy from 116.12.52.141 port 40836 Apr 2 11:23:48 h1745522 s ...	2020-04-02 17:52:17
104.168.48.107	attackbotsspam	[2020-04-02 05:20:17] NOTICE[12114][C-000000c2] chan_sip.c: Call from '' (104.168.48.107:64931) to extension '011972592698190' rejected because extension not found in context 'public'. [2020-04-02 05:20:17] SECURITY[12128] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-04-02T05:20:17.936-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="011972592698190",SessionID="0x7f020c05ea88",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/104.168.48.107/64931",ACLName="no_extension_match" [2020-04-02 05:20:17] NOTICE[12114][C-000000c3] chan_sip.c: Call from '' (104.168.48.107:64933) to extension '011970592698190' rejected because extension not found in context 'public'. [2020-04-02 05:20:17] SECURITY[12128] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-04-02T05:20:17.936-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="011970592698190",SessionID="0x7f020c0220b8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IP ...	2020-04-02 17:22:28
120.70.100.2	attack	Apr 2 10:18:59 odroid64 sshd\[20748\]: User root from 120.70.100.2 not allowed because not listed in AllowUsers Apr 2 10:19:00 odroid64 sshd\[20748\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.70.100.2 user=root ...	2020-04-02 17:15:46
113.180.21.231	attackbotsspam	Brute force attempt	2020-04-02 17:44:24

Recently Reported IPs

196.219.95.132	59.153.240.205	171.224.204.195	125.5.184.216
102.159.17.251	14.244.50.80	178.176.182.111	165.169.185.84
115.223.102.214	101.37.156.175	122.51.85.199	112.94.161.141
188.131.169.24	129.28.193.80	173.212.202.169	211.137.234.86
52.100.146.46	172.104.94.137	195.154.221.103	81.169.196.165