1.34.136.2 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Taiwan, Province of China

Internet Service Provider: Chunghwa Telecom Co. Ltd.

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	Automatic report - Port Scan Attack	2020-03-08 13:17:20
attack	Unauthorized connection attempt detected from IP address 1.34.136.2 to port 23 [J]	2020-03-03 03:30:00

Comments on same subnet:

IP	Type	Details	Datetime
1.34.136.15	attackspambots	invalid login attempt	2019-10-20 13:26:08
1.34.136.15	attackspambots	Sep 10 03:17:31 smtp postfix/smtpd[66611]: NOQUEUE: reject: RCPT from 1-34-136-15.HINET-IP.hinet.net[1.34.136.15]: 554 5.7.1 Service unavailable; Client host [1.34.136.15] blocked using bl.spamcop.net; Blocked - see https://www.spamcop.net/bl.shtml?1.34.136.15; from= to= proto=ESMTP helo= ...	2019-09-10 15:23:39

Type

Details

Datetime

1.34.136.15

attackspambots

invalid login attempt

2019-10-20 13:26:08

1.34.136.15

attackspambots

Sep 10 03:17:31 smtp postfix/smtpd[66611]: NOQUEUE: reject: RCPT from 1-34-136-15.HINET-IP.hinet.net[1.34.136.15]: 554 5.7.1 Service unavailable; Client host [1.34.136.15] blocked using bl.spamcop.net; Blocked - see https://www.spamcop.net/bl.shtml?1.34.136.15; from= to= proto=ESMTP helo=
...

2019-09-10 15:23:39

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 1.34.136.2
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 34007
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;1.34.136.2.			IN	A

;; AUTHORITY SECTION:
.			286	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020030201 1800 900 604800 86400

;; Query time: 110 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Mar 03 03:29:57 CST 2020
;; MSG SIZE  rcvd: 114

Host info

2.136.34.1.in-addr.arpa domain name pointer 1-34-136-2.HINET-IP.hinet.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
2.136.34.1.in-addr.arpa	name = 1-34-136-2.HINET-IP.hinet.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
192.3.34.74	attack	3389BruteforceFW23	2019-09-25 23:41:31
222.186.52.107	attackspambots	Fail2Ban Ban Triggered	2019-09-26 00:03:21
185.234.219.113	attack	2019-09-25T13:53:08.821630MailD postfix/smtpd[28885]: warning: unknown[185.234.219.113]: SASL LOGIN authentication failed: authentication failure 2019-09-25T14:06:33.412550MailD postfix/smtpd[30274]: warning: unknown[185.234.219.113]: SASL LOGIN authentication failed: authentication failure 2019-09-25T14:20:04.660128MailD postfix/smtpd[31421]: warning: unknown[185.234.219.113]: SASL LOGIN authentication failed: authentication failure	2019-09-26 00:04:04
92.53.65.136	attack	Port Scan: TCP/5085	2019-09-25 23:53:31
104.155.201.226	attack	Sep 25 22:30:57 webhost01 sshd[21866]: Failed password for root from 104.155.201.226 port 45668 ssh2 Sep 25 22:35:36 webhost01 sshd[21889]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.155.201.226 ...	2019-09-25 23:55:12
138.94.160.58	attackbotsspam	Sep 25 05:55:16 hpm sshd\[15612\]: Invalid user db2inst1 from 138.94.160.58 Sep 25 05:55:16 hpm sshd\[15612\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58-160-94-138.turbonetburitis.com.br Sep 25 05:55:17 hpm sshd\[15612\]: Failed password for invalid user db2inst1 from 138.94.160.58 port 36896 ssh2 Sep 25 06:00:21 hpm sshd\[16019\]: Invalid user alien from 138.94.160.58 Sep 25 06:00:21 hpm sshd\[16019\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58-160-94-138.turbonetburitis.com.br	2019-09-26 00:11:39
139.59.94.192	attackspam	2019-09-25T11:27:43.1593341495-001 sshd\[64496\]: Invalid user en from 139.59.94.192 port 39507 2019-09-25T11:27:43.1663541495-001 sshd\[64496\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.94.192 2019-09-25T11:27:44.9463191495-001 sshd\[64496\]: Failed password for invalid user en from 139.59.94.192 port 39507 ssh2 2019-09-25T11:32:40.8287871495-001 sshd\[64746\]: Invalid user macosx from 139.59.94.192 port 60076 2019-09-25T11:32:40.8360761495-001 sshd\[64746\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.94.192 2019-09-25T11:32:42.7215591495-001 sshd\[64746\]: Failed password for invalid user macosx from 139.59.94.192 port 60076 ssh2 ...	2019-09-26 00:01:17
45.136.109.200	attackbots	09/25/2019-11:21:27.189095 45.136.109.200 Protocol: 6 ET SCAN NMAP -sS window 1024	2019-09-25 23:47:29
121.194.13.36	attack	Sep 25 04:50:23 sachi sshd\[32462\]: Invalid user yp from 121.194.13.36 Sep 25 04:50:23 sachi sshd\[32462\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.194.13.36 Sep 25 04:50:24 sachi sshd\[32462\]: Failed password for invalid user yp from 121.194.13.36 port 48004 ssh2 Sep 25 04:55:16 sachi sshd\[402\]: Invalid user beginner from 121.194.13.36 Sep 25 04:55:16 sachi sshd\[402\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.194.13.36	2019-09-25 23:35:57
198.108.66.187	attack	102/tcp 5632/udp 9200/tcp... [2019-07-25/09-25]6pkt,4pt.(tcp),1pt.(udp)	2019-09-25 23:59:39
77.247.110.248	attackspambots	firewall-block, port(s): 5060/tcp	2019-09-25 23:56:57
181.170.71.133	attack	23/tcp 5555/tcp 23/tcp [2019-09-01/25]3pkt	2019-09-25 23:33:41
37.187.181.182	attack	Sep 25 06:08:52 auw2 sshd\[5947\]: Invalid user dinesh from 37.187.181.182 Sep 25 06:08:52 auw2 sshd\[5947\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.ip-37-187-181.eu Sep 25 06:08:54 auw2 sshd\[5947\]: Failed password for invalid user dinesh from 37.187.181.182 port 57308 ssh2 Sep 25 06:13:06 auw2 sshd\[6416\]: Invalid user insvis from 37.187.181.182 Sep 25 06:13:06 auw2 sshd\[6416\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.ip-37-187-181.eu	2019-09-26 00:15:04
182.176.166.54	attackbotsspam	23/tcp 2323/tcp 23/tcp [2019-08-05/09-25]3pkt	2019-09-25 23:44:51
206.189.72.217	attackbotsspam	Sep 25 17:24:07 eventyay sshd[23201]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.72.217 Sep 25 17:24:09 eventyay sshd[23201]: Failed password for invalid user 6blncjbv from 206.189.72.217 port 48716 ssh2 Sep 25 17:28:31 eventyay sshd[23284]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.72.217 ...	2019-09-25 23:44:31

Recently Reported IPs

66.96.253.22	94.49.164.215	203.243.218.180	211.109.133.221
113.246.117.174	83.208.155.18	113.235.30.90	53.59.42.81
88.82.124.20	133.91.37.247	114.218.143.74	161.253.218.233
1.231.15.221	209.247.151.150	80.112.246.117	166.16.204.213
179.246.133.72	1.153.11.107	82.165.224.202	178.238.210.128