1.34.103.29 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Taiwan, Province of China

Internet Service Provider: Chunghwa Telecom Co. Ltd.

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Honeypot attack, port: 81, PTR: 1-34-103-29.HINET-IP.hinet.net.	2020-03-31 23:03:26

Comments on same subnet:

IP	Type	Details	Datetime
1.34.103.46	attackbotsspam	[portscan] tcp/23 [TELNET] *(RWIN=455)(06031027)	2020-06-03 18:19:32

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 1.34.103.29
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 58304
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;1.34.103.29.			IN	A

;; AUTHORITY SECTION:
.			487	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020033100 1800 900 604800 86400

;; Query time: 88 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Mar 31 23:03:17 CST 2020
;; MSG SIZE  rcvd: 115

Host info

29.103.34.1.in-addr.arpa domain name pointer 1-34-103-29.HINET-IP.hinet.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
29.103.34.1.in-addr.arpa	name = 1-34-103-29.HINET-IP.hinet.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
46.166.151.47	attack	\[2019-07-24 08:59:54\] SECURITY\[20812\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-07-24T08:59:54.059-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="071046313113291",SessionID="0x7f06f8018788",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/46.166.151.47/58748",ACLName="no_extension_match" \[2019-07-24 09:06:20\] SECURITY\[20812\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-07-24T09:06:20.943-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="071046363302946",SessionID="0x7f06f83e80f8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/46.166.151.47/52657",ACLName="no_extension_match" \[2019-07-24 09:08:46\] SECURITY\[20812\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-07-24T09:08:46.324-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="071046812400638",SessionID="0x7f06f887c348",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/46.166.151.47/65031",ACLName="no_	2019-07-24 21:43:11
51.38.90.195	attackspam	Jul 24 18:51:40 vibhu-HP-Z238-Microtower-Workstation sshd\[9270\]: Invalid user cyborg from 51.38.90.195 Jul 24 18:51:40 vibhu-HP-Z238-Microtower-Workstation sshd\[9270\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.38.90.195 Jul 24 18:51:42 vibhu-HP-Z238-Microtower-Workstation sshd\[9270\]: Failed password for invalid user cyborg from 51.38.90.195 port 57664 ssh2 Jul 24 18:56:04 vibhu-HP-Z238-Microtower-Workstation sshd\[9446\]: Invalid user rizal from 51.38.90.195 Jul 24 18:56:04 vibhu-HP-Z238-Microtower-Workstation sshd\[9446\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.38.90.195 ...	2019-07-24 21:34:55
3.112.173.46	attackspam	Jul 23 17:54:43 lvps83-169-44-148 sshd[23517]: Invalid user user from 3.112.173.46 Jul 23 17:54:43 lvps83-169-44-148 sshd[23517]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=em3-3-112-173-46.ap-northeast-1.compute.amazonaws.com Jul 23 17:54:45 lvps83-169-44-148 sshd[23517]: Failed password for invalid user user from 3.112.173.46 port 32640 ssh2 Jul 23 18:23:46 lvps83-169-44-148 sshd[26373]: Invalid user plex from 3.112.173.46 Jul 23 18:23:46 lvps83-169-44-148 sshd[26373]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=em3-3-112-173-46.ap-northeast-1.compute.amazonaws.com Jul 23 18:23:48 lvps83-169-44-148 sshd[26373]: Failed password for invalid user plex from 3.112.173.46 port 32300 ssh2 Jul 23 18:28:42 lvps83-169-44-148 sshd[26760]: Invalid user admin2 from 3.112.173.46 Jul 23 18:28:42 lvps83-169-44-148 sshd[26760]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 t........ -------------------------------	2019-07-24 21:55:58
88.247.71.40	attack	Caught in portsentry honeypot	2019-07-24 21:27:16
198.108.66.85	attack	SMB Server BruteForce Attack	2019-07-24 21:17:11
115.149.151.99	attackbots	Honeypot attack, port: 23, PTR: PTR record not found	2019-07-24 22:08:07
51.75.120.244	attackspambots	Jul 24 07:52:08 aat-srv002 sshd[11937]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.75.120.244 Jul 24 07:52:10 aat-srv002 sshd[11937]: Failed password for invalid user bp from 51.75.120.244 port 56834 ssh2 Jul 24 07:56:33 aat-srv002 sshd[12030]: Failed password for root from 51.75.120.244 port 52418 ssh2 ...	2019-07-24 21:18:19
116.107.112.164	attack	Honeypot attack, port: 445, PTR: dynamic-adsl.viettel.vn.	2019-07-24 21:54:20
89.248.168.112	attackbots	Unauthorised access (Jul 24) SRC=89.248.168.112 LEN=40 TTL=249 ID=54321 TCP DPT=21 WINDOW=65535 SYN Unauthorised access (Jul 23) SRC=89.248.168.112 LEN=40 TTL=249 ID=54321 TCP DPT=5432 WINDOW=65535 SYN	2019-07-24 22:14:05
187.185.70.10	attack	Jul 24 11:18:40 mail sshd\[11441\]: Invalid user test04 from 187.185.70.10 port 37080 Jul 24 11:18:40 mail sshd\[11441\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.185.70.10 Jul 24 11:18:42 mail sshd\[11441\]: Failed password for invalid user test04 from 187.185.70.10 port 37080 ssh2 Jul 24 11:23:40 mail sshd\[12188\]: Invalid user guillermo from 187.185.70.10 port 60736 Jul 24 11:23:40 mail sshd\[12188\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.185.70.10	2019-07-24 22:10:44
211.147.216.19	attackspambots	Jul 24 19:29:27 areeb-Workstation sshd\[8149\]: Invalid user ftpuser1 from 211.147.216.19 Jul 24 19:29:27 areeb-Workstation sshd\[8149\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.147.216.19 Jul 24 19:29:29 areeb-Workstation sshd\[8149\]: Failed password for invalid user ftpuser1 from 211.147.216.19 port 52012 ssh2 ...	2019-07-24 22:13:10
153.36.236.234	attack	Jul 24 14:45:19 legacy sshd[16197]: Failed password for root from 153.36.236.234 port 61695 ssh2 Jul 24 14:46:05 legacy sshd[16212]: Failed password for root from 153.36.236.234 port 20978 ssh2 ...	2019-07-24 21:10:19
202.64.142.76	attackbots	SMB Server BruteForce Attack	2019-07-24 21:23:31
193.201.224.82	attackbots	2019-07-24T11:13:09.682297wiz-ks3 sshd[3290]: Invalid user admin from 193.201.224.82 port 24617 2019-07-24T11:13:09.732450wiz-ks3 sshd[3290]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.201.224.82 2019-07-24T11:13:09.682297wiz-ks3 sshd[3290]: Invalid user admin from 193.201.224.82 port 24617 2019-07-24T11:13:11.333573wiz-ks3 sshd[3290]: Failed password for invalid user admin from 193.201.224.82 port 24617 ssh2 2019-07-24T11:13:27.159638wiz-ks3 sshd[3292]: Invalid user support from 193.201.224.82 port 1785 2019-07-24T11:13:27.206105wiz-ks3 sshd[3292]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.201.224.82 2019-07-24T11:13:27.159638wiz-ks3 sshd[3292]: Invalid user support from 193.201.224.82 port 1785 2019-07-24T11:13:28.611524wiz-ks3 sshd[3292]: Failed password for invalid user support from 193.201.224.82 port 1785 ssh2 2019-07-24T11:13:38.046750wiz-ks3 sshd[3294]: Invalid user admin from 193.201.224.82 port 6293 ..	2019-07-24 21:52:31
191.53.252.117	attack	failed_logins	2019-07-24 22:08:48

Recently Reported IPs

113.69.224.78	31.23.155.28	123.16.206.48	41.155.243.150
61.239.73.163	47.254.151.244	78.188.136.203	250.163.81.119
195.161.41.127	31.171.202.3	210.209.157.162	158.44.97.73
236.210.232.231	138.68.46.85	162.243.131.54	1.52.123.90
185.153.196.245	185.59.66.233	196.56.10.129	45.133.99.6