61.216.159.55 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Taiwan, Province of China

Internet Service Provider: Chunghwa Telecom Co. Ltd.

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	FTP/21 MH Probe, BF, Hack -	2019-10-08 19:20:57

Comments on same subnet:

IP	Type	Details	Datetime
61.216.159.188	attackbotsspam	MultiHost/MultiPort Probe, Scan, Hack -	2019-10-09 13:27:47

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 61.216.159.55
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 47614
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;61.216.159.55.			IN	A

;; AUTHORITY SECTION:
.			460	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019100800 1800 900 604800 86400

;; Query time: 140 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Oct 08 19:20:53 CST 2019
;; MSG SIZE  rcvd: 117

Host info

55.159.216.61.in-addr.arpa domain name pointer 61-216-159-55.HINET-IP.hinet.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
55.159.216.61.in-addr.arpa	name = 61-216-159-55.HINET-IP.hinet.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
117.54.226.50	attackbots	Unauthorized connection attempt detected from IP address 117.54.226.50 to port 1433	2019-12-30 21:10:09
112.85.42.185	attack	sshd jail - ssh hack attempt	2019-12-30 20:35:03
138.94.160.57	attack	Automatic report - Banned IP Access	2019-12-30 20:46:58
114.237.194.220	attackspambots	Dec 30 07:22:11 grey postfix/smtpd\[12275\]: NOQUEUE: reject: RCPT from unknown\[114.237.194.220\]: 554 5.7.1 Service unavailable\; Client host \[114.237.194.220\] blocked using cbl.abuseat.org\; Blocked - see http://www.abuseat.org/lookup.cgi\?ip=114.237.194.220\; from=\ to=\ proto=SMTP helo=\ ...	2019-12-30 20:45:53
104.236.28.167	attackspam	Dec 30 13:39:36 ns3110291 sshd\[12539\]: Invalid user mcgowen from 104.236.28.167 Dec 30 13:39:36 ns3110291 sshd\[12539\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.236.28.167 Dec 30 13:39:38 ns3110291 sshd\[12539\]: Failed password for invalid user mcgowen from 104.236.28.167 port 38416 ssh2 Dec 30 13:41:17 ns3110291 sshd\[12581\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.236.28.167 user=root Dec 30 13:41:19 ns3110291 sshd\[12581\]: Failed password for root from 104.236.28.167 port 55570 ssh2 ...	2019-12-30 20:44:22
37.150.117.86	attack	1577686937 - 12/30/2019 07:22:17 Host: 37.150.117.86/37.150.117.86 Port: 445 TCP Blocked	2019-12-30 20:41:51
185.156.73.42	attack	12/30/2019-07:42:16.214491 185.156.73.42 Protocol: 6 ET SCAN NMAP -sS window 1024	2019-12-30 20:42:20
5.196.42.123	attackspam	Dec 30 13:47:46 v22018086721571380 sshd[1404]: Failed password for invalid user roloff from 5.196.42.123 port 53810 ssh2 Dec 30 13:50:55 v22018086721571380 sshd[1644]: Failed password for invalid user mysql from 5.196.42.123 port 41615 ssh2	2019-12-30 21:04:44
185.175.93.27	attackbots	ET DROP Dshield Block Listed Source group 1 - port: 44957 proto: TCP cat: Misc Attack	2019-12-30 20:39:38
39.152.54.180	attackbotsspam	Dec 30 07:21:55 163-172-32-151 proftpd[23917]: 0.0.0.0 (39.152.54.180[39.152.54.180]) - USER anonymous: no such user found from 39.152.54.180 [39.152.54.180] to 163.172.32.151:21 ...	2019-12-30 20:54:04
165.227.26.69	attack	Dec 30 13:59:44 [host] sshd[17170]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.26.69 user=root Dec 30 13:59:46 [host] sshd[17170]: Failed password for root from 165.227.26.69 port 45958 ssh2 Dec 30 14:02:24 [host] sshd[17242]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.26.69 user=root	2019-12-30 21:12:35
45.32.171.70	attack	Automatic report - XMLRPC Attack	2019-12-30 21:16:53
113.173.133.220	attack	Lines containing failures of 113.173.133.220 Dec 30 07:19:54 MAKserver05 sshd[24772]: Invalid user system from 113.173.133.220 port 58790 Dec 30 07:19:55 MAKserver05 sshd[24772]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.173.133.220 Dec 30 07:19:57 MAKserver05 sshd[24772]: Failed password for invalid user system from 113.173.133.220 port 58790 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=113.173.133.220	2019-12-30 20:49:45
41.209.94.22	attack	Unauthorized connection attempt detected from IP address 41.209.94.22 to port 445	2019-12-30 21:05:25
217.145.45.2	attack	$f2bV_matches	2019-12-30 20:47:29

Recently Reported IPs

119.103.78.7	50.114.75.35	159.89.55.240	138.197.95.2
190.218.88.155	78.178.177.85	59.25.154.75	36.224.235.251
255.57.170.238	104.245.144.58	26.190.93.236	130.46.177.83
80.122.58.108	206.155.187.84	187.163.204.91	91.234.86.182
206.189.81.101	156.212.128.71	111.183.121.237	203.85.128.27