61.216.14.45 - IPInfo

Basic Info

City: Taipei

Region: Taipei

Country: Taiwan, China

Internet Service Provider: Chunghwa

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
61.216.140.180	attackbotsspam	Unauthorized connection attempt from IP address 61.216.140.180 on Port 445(SMB)	2020-09-06 03:35:06
61.216.140.180	attackbotsspam	Unauthorized connection attempt from IP address 61.216.140.180 on Port 445(SMB)	2020-09-05 19:12:22
61.216.140.68	attackspam	Unauthorized connection attempt from IP address 61.216.140.68 on Port 445(SMB)	2020-07-29 02:57:44
61.216.140.52	attack	Jan 9 08:13:26 vpn sshd[20844]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.216.140.52 Jan 9 08:13:27 vpn sshd[20844]: Failed password for invalid user edi from 61.216.140.52 port 53206 ssh2 Jan 9 08:17:15 vpn sshd[20852]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.216.140.52	2020-01-05 20:27:21
61.216.140.85	attack	Unauthorized connection attempt from IP address 61.216.140.85 on Port 445(SMB)	2019-12-11 08:29:18
61.216.142.160	attackspam	11/04/2019-17:41:48.421168 61.216.142.160 Protocol: 6 ET CINS Active Threat Intelligence Poor Reputation IP group 63	2019-11-05 06:56:57
61.216.140.85	attack	Attempt to attack host OS, exploiting network vulnerabilities, on 21-09-2019 13:50:24.	2019-09-22 04:13:21
61.216.145.48	attack	Sep 4 19:27:56 *** sshd[4308]: Invalid user ftp from 61.216.145.48	2019-09-05 06:14:41
61.216.145.48	attackbotsspam	Aug 30 13:54:27 itv-usvr-01 sshd[1503]: Invalid user jaiken from 61.216.145.48 Aug 30 13:54:30 itv-usvr-01 sshd[1503]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.216.145.48 Aug 30 13:54:27 itv-usvr-01 sshd[1503]: Invalid user jaiken from 61.216.145.48 Aug 30 13:54:33 itv-usvr-01 sshd[1503]: Failed password for invalid user jaiken from 61.216.145.48 port 42990 ssh2	2019-09-03 14:00:32
61.216.145.48	attackspam	Aug 27 12:09:58 v22019058497090703 sshd[15223]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.216.145.48 Aug 27 12:10:00 v22019058497090703 sshd[15223]: Failed password for invalid user vagner from 61.216.145.48 port 42158 ssh2 Aug 27 12:14:24 v22019058497090703 sshd[15551]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.216.145.48 ...	2019-08-27 19:14:22
61.216.145.48	attackbotsspam	Invalid user temp from 61.216.145.48 port 45748	2019-08-18 13:49:29
61.216.145.48	attackspam	Aug 15 05:43:19 * sshd[13194]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.216.145.48 Aug 15 05:43:22 * sshd[13194]: Failed password for invalid user support from 61.216.145.48 port 33382 ssh2	2019-08-15 12:43:50
61.216.145.48	attackbotsspam	Aug 10 18:20:12 dallas01 sshd[5583]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.216.145.48 Aug 10 18:20:14 dallas01 sshd[5583]: Failed password for invalid user starbound from 61.216.145.48 port 55578 ssh2 Aug 10 18:25:04 dallas01 sshd[6128]: Failed password for root from 61.216.145.48 port 49630 ssh2	2019-08-11 10:22:57
61.216.145.48	attackspambots	SSH bruteforce	2019-08-06 18:52:44
61.216.145.48	attack	Aug 2 03:51:48 MK-Soft-VM5 sshd\[9453\]: Invalid user ethereal from 61.216.145.48 port 47184 Aug 2 03:51:48 MK-Soft-VM5 sshd\[9453\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.216.145.48 Aug 2 03:51:49 MK-Soft-VM5 sshd\[9453\]: Failed password for invalid user ethereal from 61.216.145.48 port 47184 ssh2 ...	2019-08-02 12:54:47

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 61.216.14.45
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 31438
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;61.216.14.45.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025010702 1800 900 604800 86400

;; Query time: 12 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Jan 08 11:28:42 CST 2025
;; MSG SIZE  rcvd: 105

Host info

45.14.216.61.in-addr.arpa domain name pointer 61-216-14-45.hinet-ip.hinet.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
45.14.216.61.in-addr.arpa	name = 61-216-14-45.hinet-ip.hinet.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
117.103.2.114	attack	" "	2020-09-04 21:58:02
46.101.154.142	attackbotsspam	SSH-BruteForce	2020-09-04 21:43:31
167.248.133.25	attackspambots	Port scan: Attack repeated for 24 hours	2020-09-04 21:10:48
106.54.255.11	attackspam	Sep 4 09:46:46 rotator sshd\[18372\]: Invalid user ceara from 106.54.255.11Sep 4 09:46:48 rotator sshd\[18372\]: Failed password for invalid user ceara from 106.54.255.11 port 33708 ssh2Sep 4 09:51:25 rotator sshd\[19172\]: Invalid user somebody from 106.54.255.11Sep 4 09:51:27 rotator sshd\[19172\]: Failed password for invalid user somebody from 106.54.255.11 port 55028 ssh2Sep 4 09:56:00 rotator sshd\[19949\]: Invalid user admin from 106.54.255.11Sep 4 09:56:03 rotator sshd\[19949\]: Failed password for invalid user admin from 106.54.255.11 port 48122 ssh2 ...	2020-09-04 21:58:50
113.250.254.107	attackbotsspam	Lines containing failures of 113.250.254.107 Sep 3 18:53:58 hgb10502 sshd[27549]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.250.254.107 user=r.r Sep 3 18:54:00 hgb10502 sshd[27549]: Failed password for r.r from 113.250.254.107 port 24382 ssh2 Sep 3 18:54:01 hgb10502 sshd[27549]: Received disconnect from 113.250.254.107 port 24382:11: Bye Bye [preauth] Sep 3 18:54:01 hgb10502 sshd[27549]: Disconnected from authenticating user r.r 113.250.254.107 port 24382 [preauth] Sep 3 18:59:11 hgb10502 sshd[28239]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.250.254.107 user=r.r Sep 3 18:59:13 hgb10502 sshd[28239]: Failed password for r.r from 113.250.254.107 port 24368 ssh2 Sep 3 18:59:15 hgb10502 sshd[28239]: Received disconnect from 113.250.254.107 port 24368:11: Bye Bye [preauth] Sep 3 18:59:15 hgb10502 sshd[28239]: Disconnected from authenticating user r.r 113.250.254.107 p........ ------------------------------	2020-09-04 21:20:02
77.121.81.204	attack	Sep 4 12:29:54 haigwepa sshd[24878]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=77.121.81.204 Sep 4 12:29:57 haigwepa sshd[24878]: Failed password for invalid user sss from 77.121.81.204 port 8261 ssh2 ...	2020-09-04 21:49:05
183.82.111.97	attackbots	Icarus honeypot on github	2020-09-04 21:21:10
119.28.7.77	attack	"$f2bV_matches"	2020-09-04 21:54:52
185.216.140.240	attackspambots	Port scanning [9 denied]	2020-09-04 21:16:26
177.102.239.107	attack	Sep 3 18:49:39 mellenthin postfix/smtpd[20369]: NOQUEUE: reject: RCPT from unknown[177.102.239.107]: 554 5.7.1 Service unavailable; Client host [177.102.239.107] blocked using zen.spamhaus.org; https://www.spamhaus.org/query/ip/177.102.239.107; from= to= proto=ESMTP helo=<177-102-239-107.dsl.telesp.net.br>	2020-09-04 21:46:43
112.85.42.94	attackbots	Sep 4 16:21:58 pkdns2 sshd\[22441\]: Failed password for root from 112.85.42.94 port 14745 ssh2Sep 4 16:21:59 pkdns2 sshd\[22441\]: Failed password for root from 112.85.42.94 port 14745 ssh2Sep 4 16:22:02 pkdns2 sshd\[22441\]: Failed password for root from 112.85.42.94 port 14745 ssh2Sep 4 16:23:48 pkdns2 sshd\[22508\]: Failed password for root from 112.85.42.94 port 26777 ssh2Sep 4 16:28:23 pkdns2 sshd\[22698\]: Failed password for root from 112.85.42.94 port 60209 ssh2Sep 4 16:29:18 pkdns2 sshd\[22741\]: Failed password for root from 112.85.42.94 port 12546 ssh2 ...	2020-09-04 21:37:53
147.91.31.52	attackbots	As always with Serbia /Wp-login.php /wp-admin.php	2020-09-04 21:40:29
62.176.115.154	attack	firewall-block, port(s): 445/tcp	2020-09-04 21:22:10
120.14.17.78	attackbots	/%23	2020-09-04 21:24:37
103.51.103.3	attackspam	103.51.103.3 - - [04/Sep/2020:14:50:03 +0100] "POST /wp-login.php HTTP/1.1" 200 2375 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 103.51.103.3 - - [04/Sep/2020:14:50:04 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 103.51.103.3 - - [04/Sep/2020:14:53:29 +0100] "POST /wp-login.php HTTP/1.1" 200 1933 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-09-04 21:56:50

Recently Reported IPs

127.97.32.31	176.88.100.28	176.89.120.96	159.20.206.151
10.10.204.124	10.10.204.105	160.238.72.142	59.92.226.29
111.51.76.68	197.249.182.45	101.28.250.72	117.177.67.5
229.60.116.236	221.147.166.194	111.76.206.149	111.76.206.246
95.38.248.93	210.65.47.114	185.230.4.182	49.235.184.230