1.34.13.221 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Taiwan, China

Internet Service Provider: Chunghwa Telecom Co. Ltd.

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	TW_MAINT-TW-TWNIC_<177>1592675435 [1:2403302:58145] ET CINS Active Threat Intelligence Poor Reputation IP TCP group 2 [Classification: Misc Attack] [Priority: 2]: {TCP} 1.34.13.221:22548	2020-06-21 02:20:07

Comments on same subnet:

IP	Type	Details	Datetime
1.34.130.101	attackbots	Hits on port : 8080	2020-05-16 17:21:41
1.34.137.214	attackbotsspam	Honeypot attack, port: 81, PTR: 1-34-137-214.HINET-IP.hinet.net.	2020-03-23 19:28:54
1.34.136.2	attackspam	Automatic report - Port Scan Attack	2020-03-08 13:17:20
1.34.136.2	attack	Unauthorized connection attempt detected from IP address 1.34.136.2 to port 23 [J]	2020-03-03 03:30:00
1.34.137.143	attackspambots	Unauthorized connection attempt detected from IP address 1.34.137.143 to port 8080 [J]	2020-01-06 19:00:12
1.34.134.61	attackspam	Attempt to attack host OS, exploiting network vulnerabilities, on 11-11-2019 06:20:24.	2019-11-11 21:33:16
1.34.136.15	attackspambots	invalid login attempt	2019-10-20 13:26:08
1.34.136.15	attackspambots	Sep 10 03:17:31 smtp postfix/smtpd[66611]: NOQUEUE: reject: RCPT from 1-34-136-15.HINET-IP.hinet.net[1.34.136.15]: 554 5.7.1 Service unavailable; Client host [1.34.136.15] blocked using bl.spamcop.net; Blocked - see https://www.spamcop.net/bl.shtml?1.34.136.15; from= to= proto=ESMTP helo= ...	2019-09-10 15:23:39

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 1.34.13.221
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 60911
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;1.34.13.221.			IN	A

;; AUTHORITY SECTION:
.			141	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020062000 1800 900 604800 86400

;; Query time: 95 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Jun 21 02:20:03 CST 2020
;; MSG SIZE  rcvd: 115

Host info

221.13.34.1.in-addr.arpa domain name pointer 1-34-13-221.HINET-IP.hinet.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
221.13.34.1.in-addr.arpa	name = 1-34-13-221.HINET-IP.hinet.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
120.192.81.226	attackbotsspam	Dec 31 11:16:39 demo postfix/smtpd[29275]: warning: unknown[120.192.81.226]: SASL LOGIN authentication failed: authentication failure Dec 31 11:16:48 demo postfix/smtpd[29275]: warning: unknown[120.192.81.226]: SASL LOGIN authentication failed: authentication failure ...	2019-12-31 18:43:25
110.138.151.132	attackbotsspam	Unauthorized connection attempt detected from IP address 110.138.151.132 to port 445	2019-12-31 18:37:03
124.116.91.16	attackspam	Scanning	2019-12-31 18:34:21
117.247.106.144	attackbots	Honeypot attack, port: 445, PTR: PTR record not found	2019-12-31 19:07:40
111.230.143.110	attackspambots	Dec 31 09:55:56 pi sshd\[22105\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.230.143.110 user=root Dec 31 09:55:58 pi sshd\[22105\]: Failed password for root from 111.230.143.110 port 58642 ssh2 Dec 31 10:05:32 pi sshd\[22250\]: Invalid user sarath from 111.230.143.110 port 48124 Dec 31 10:05:32 pi sshd\[22250\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.230.143.110 Dec 31 10:05:34 pi sshd\[22250\]: Failed password for invalid user sarath from 111.230.143.110 port 48124 ssh2 ...	2019-12-31 18:33:28
162.243.237.90	attackbots	no	2019-12-31 19:07:18
125.227.38.167	attack	Dec 30 04:21:04 xxx sshd[20004]: Did not receive identification string from 125.227.38.167 Dec 30 04:21:04 xxx sshd[20005]: Did not receive identification string from 125.227.38.167 Dec 30 04:21:04 xxx sshd[20006]: Did not receive identification string from 125.227.38.167 Dec 30 04:21:05 xxx sshd[20007]: Did not receive identification string from 125.227.38.167 Dec 30 04:21:06 xxx sshd[20008]: Did not receive identification string from 125.227.38.167 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=125.227.38.167	2019-12-31 18:32:48
201.161.58.66	attack	DATE:2019-12-31 07:23:19,IP:201.161.58.66,MATCHES:10,PORT:ssh	2019-12-31 19:04:05
128.199.90.245	attack	$f2bV_matches	2019-12-31 19:06:34
222.186.175.147	attackbots	IP was detected trying to Brute-Force SSH, FTP, Web Apps, Port-Scan or Hacking.	2019-12-31 18:48:55
178.116.236.42	attackbotsspam	Dec 31 09:11:14 pkdns2 sshd\[15017\]: Invalid user giacomini from 178.116.236.42Dec 31 09:11:16 pkdns2 sshd\[15017\]: Failed password for invalid user giacomini from 178.116.236.42 port 47038 ssh2Dec 31 09:11:46 pkdns2 sshd\[15024\]: Failed password for root from 178.116.236.42 port 49052 ssh2Dec 31 09:12:19 pkdns2 sshd\[15057\]: Invalid user kjs from 178.116.236.42Dec 31 09:12:22 pkdns2 sshd\[15057\]: Failed password for invalid user kjs from 178.116.236.42 port 51096 ssh2Dec 31 09:12:49 pkdns2 sshd\[15066\]: Invalid user vhost from 178.116.236.42 ...	2019-12-31 18:59:11
142.93.83.218	attackbotsspam	Dec 31 05:38:07 server sshd\[20070\]: Invalid user home from 142.93.83.218 Dec 31 05:38:07 server sshd\[20070\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.83.218 Dec 31 05:38:09 server sshd\[20070\]: Failed password for invalid user home from 142.93.83.218 port 53500 ssh2 Dec 31 12:03:00 server sshd\[13378\]: Invalid user brimo from 142.93.83.218 Dec 31 12:03:00 server sshd\[13378\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.83.218 ...	2019-12-31 18:52:25
203.172.66.222	attack	Dec 31 09:32:43 localhost sshd[29664]: Failed password for invalid user alessandr from 203.172.66.222 port 34738 ssh2 Dec 31 09:40:03 localhost sshd[30012]: Failed password for invalid user benin from 203.172.66.222 port 51446 ssh2 Dec 31 09:42:06 localhost sshd[30076]: Failed password for invalid user vz from 203.172.66.222 port 40956 ssh2	2019-12-31 18:37:38
49.83.16.2	attack	Honeypot attack, port: 5555, PTR: PTR record not found	2019-12-31 18:48:12
212.83.146.219	attackspambots	php WP PHPmyadamin ABUSE blocked for 12h	2019-12-31 18:38:34

Recently Reported IPs

142.245.51.239	121.9.134.183	108.101.19.207	20.234.201.9
55.151.171.20	159.202.70.11	224.86.110.11	166.171.176.99
192.35.169.17	103.149.194.12	188.16.146.220	129.204.1.171
92.53.96.221	182.244.114.228	36.34.150.242	179.85.186.5
193.246.149.40	95.141.23.226	58.48.109.62	49.213.201.171