1.168.200.134 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Taiwan, Province of China

Internet Service Provider: Chunghwa Telecom Co. Ltd.

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Port Scan: TCP/23	2019-09-16 06:35:46

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 1.168.200.134
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 39777
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;1.168.200.134.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019091501 1800 900 604800 86400

;; Query time: 7 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Mon Sep 16 06:35:40 CST 2019
;; MSG SIZE  rcvd: 117

Host info

134.200.168.1.in-addr.arpa domain name pointer 1-168-200-134.dynamic-ip.hinet.net.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
134.200.168.1.in-addr.arpa	name = 1-168-200-134.dynamic-ip.hinet.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
51.161.12.231	attack	SmallBizIT.US 4 packets to tcp(8545)	2020-06-11 06:29:18
178.128.92.109	attackbots	SSH Attack	2020-06-11 06:54:31
23.89.247.112	attackspambots	6.16-06/07 [bc04/m147] PostRequest-Spammer scoring: amsterdam	2020-06-11 06:33:17
41.72.219.102	attackspam	prod8 ...	2020-06-11 06:32:03
61.12.32.221	attackbotsspam	Lines containing failures of 61.12.32.221 Jun 10 00:15:15 smtp-out sshd[15091]: Invalid user casual from 61.12.32.221 port 46472 Jun 10 00:15:15 smtp-out sshd[15091]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.12.32.221 Jun 10 00:15:17 smtp-out sshd[15091]: Failed password for invalid user casual from 61.12.32.221 port 46472 ssh2 Jun 10 00:15:17 smtp-out sshd[15091]: Received disconnect from 61.12.32.221 port 46472:11: Bye Bye [preauth] Jun 10 00:15:17 smtp-out sshd[15091]: Disconnected from invalid user casual 61.12.32.221 port 46472 [preauth] Jun 10 00:26:00 smtp-out sshd[15519]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.12.32.221 user=r.r Jun 10 00:26:02 smtp-out sshd[15519]: Failed password for r.r from 61.12.32.221 port 48400 ssh2 Jun 10 00:26:04 smtp-out sshd[15519]: Received disconnect from 61.12.32.221 port 48400:11: Bye Bye [preauth] Jun 10 00:26:04 smtp-out sshd[1........ ------------------------------	2020-06-11 06:44:34
185.153.196.225	attackspam	TCP (SYN) 185.153.196.225:57814 -> port 7948, len 44	2020-06-11 06:42:38
222.186.173.142	attackspambots	Jun 11 00:43:40 vps sshd[1021079]: Failed password for root from 222.186.173.142 port 7956 ssh2 Jun 11 00:43:43 vps sshd[1021079]: Failed password for root from 222.186.173.142 port 7956 ssh2 Jun 11 00:43:47 vps sshd[1021079]: Failed password for root from 222.186.173.142 port 7956 ssh2 Jun 11 00:43:50 vps sshd[1021079]: Failed password for root from 222.186.173.142 port 7956 ssh2 Jun 11 00:43:54 vps sshd[1021079]: Failed password for root from 222.186.173.142 port 7956 ssh2 ...	2020-06-11 06:46:51
51.158.162.242	attackspambots	624. On Jun 10 2020 experienced a Brute Force SSH login attempt -> 5 unique times by 51.158.162.242.	2020-06-11 06:39:08
45.95.168.196	attackspambots	Jun 10 17:56:39 : SSH login attempts with invalid user	2020-06-11 06:52:03
51.79.86.181	attack	Automatic report - Banned IP Access	2020-06-11 06:19:43
223.113.74.54	attack	SSH Brute-Force Attack	2020-06-11 06:17:22
139.59.36.23	attackspambots	Invalid user qd from 139.59.36.23 port 51320	2020-06-11 06:22:15
27.154.33.210	attackspam	Jun 10 22:24:04 root sshd[303]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.154.33.210 user=root Jun 10 22:24:06 root sshd[303]: Failed password for root from 27.154.33.210 port 56423 ssh2 ...	2020-06-11 06:30:50
61.2.141.136	attackbots	(sshd) Failed SSH login from 61.2.141.136 (IN/India/static.ftth.enk.61.2.141.136.bsnl.in): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Jun 10 21:47:53 antmedia sshd[20496]: Did not receive identification string from 61.2.141.136 port 40029 Jun 10 21:49:12 antmedia sshd[20502]: Did not receive identification string from 61.2.141.136 port 42896 Jun 10 21:49:58 antmedia sshd[20567]: Invalid user ftpuser from 61.2.141.136 port 58528 Jun 10 21:50:00 antmedia sshd[20567]: Failed password for invalid user ftpuser from 61.2.141.136 port 58528 ssh2 Jun 10 21:50:26 antmedia sshd[20571]: Invalid user git from 61.2.141.136 port 44057	2020-06-11 06:28:30
178.121.68.21	attack	Automatic report - XMLRPC Attack	2020-06-11 06:35:09

Recently Reported IPs

198.210.105.167	198.199.88.103	197.51.119.88	123.29.127.219
46.124.198.251	198.47.121.29	149.86.142.16	191.190.20.15
189.213.163.97	186.179.190.225	186.92.69.127	20.59.4.118
185.199.111.153	133.64.68.167	213.70.131.25	184.180.139.66
211.251.169.153	217.38.223.134	180.162.133.55	212.138.173.184