1.34.209.99 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Taiwan, Province of China

Internet Service Provider: Chunghwa Telecom Co. Ltd.

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Honeypot attack, port: 81, PTR: 1-34-209-99.HINET-IP.hinet.net.	2020-01-11 07:26:57

Comments on same subnet:

IP	Type	Details	Datetime
1.34.209.150	attack	Honeypot attack, port: 81, PTR: 1-34-209-150.HINET-IP.hinet.net.	2020-02-20 03:04:34
1.34.209.63	attack	Feb 18 05:53:38 debian-2gb-nbg1-2 kernel: \[4260834.401438\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=1.34.209.63 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=243 ID=9708 DF PROTO=TCP SPT=9393 DPT=23 WINDOW=14600 RES=0x00 SYN URGP=0	2020-02-18 17:00:25

Type

Details

Datetime

1.34.209.150

attack

Honeypot attack, port: 81, PTR: 1-34-209-150.HINET-IP.hinet.net.

2020-02-20 03:04:34

1.34.209.63

attack

Feb 18 05:53:38 debian-2gb-nbg1-2 kernel: \[4260834.401438\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=1.34.209.63 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=243 ID=9708 DF PROTO=TCP SPT=9393 DPT=23 WINDOW=14600 RES=0x00 SYN URGP=0

2020-02-18 17:00:25

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 1.34.209.99
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 17900
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;1.34.209.99.			IN	A

;; AUTHORITY SECTION:
.			318	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020011002 1800 900 604800 86400

;; Query time: 122 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Jan 11 07:26:53 CST 2020
;; MSG SIZE  rcvd: 115

Host info

99.209.34.1.in-addr.arpa domain name pointer 1-34-209-99.HINET-IP.hinet.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
99.209.34.1.in-addr.arpa	name = 1-34-209-99.HINET-IP.hinet.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
151.80.41.124	attackspambots	Sep 2 08:32:06 SilenceServices sshd[21585]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=151.80.41.124 Sep 2 08:32:08 SilenceServices sshd[21585]: Failed password for invalid user kathleen from 151.80.41.124 port 33572 ssh2 Sep 2 08:35:47 SilenceServices sshd[23012]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=151.80.41.124	2019-09-02 14:36:43
114.67.90.149	attack	Sep 2 05:20:51 bouncer sshd\[13544\]: Invalid user postgres from 114.67.90.149 port 60493 Sep 2 05:20:51 bouncer sshd\[13544\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.67.90.149 Sep 2 05:20:52 bouncer sshd\[13544\]: Failed password for invalid user postgres from 114.67.90.149 port 60493 ssh2 ...	2019-09-02 14:37:37
68.183.150.254	attackbotsspam	Sep 2 06:27:47 MK-Soft-VM5 sshd\[30830\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.150.254 user=root Sep 2 06:27:49 MK-Soft-VM5 sshd\[30830\]: Failed password for root from 68.183.150.254 port 38142 ssh2 Sep 2 06:33:37 MK-Soft-VM5 sshd\[30866\]: Invalid user felix from 68.183.150.254 port 35986 ...	2019-09-02 14:39:23
121.128.200.146	attackbotsspam	Sep 2 02:29:09 vtv3 sshd\[12056\]: Invalid user kurt from 121.128.200.146 port 52884 Sep 2 02:29:09 vtv3 sshd\[12056\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.128.200.146 Sep 2 02:29:11 vtv3 sshd\[12056\]: Failed password for invalid user kurt from 121.128.200.146 port 52884 ssh2 Sep 2 02:33:52 vtv3 sshd\[14645\]: Invalid user hitleap from 121.128.200.146 port 41296 Sep 2 02:33:52 vtv3 sshd\[14645\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.128.200.146 Sep 2 02:47:40 vtv3 sshd\[21727\]: Invalid user nas from 121.128.200.146 port 34690 Sep 2 02:47:40 vtv3 sshd\[21727\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.128.200.146 Sep 2 02:47:43 vtv3 sshd\[21727\]: Failed password for invalid user nas from 121.128.200.146 port 34690 ssh2 Sep 2 02:52:20 vtv3 sshd\[24147\]: Invalid user wss from 121.128.200.146 port 51316 Sep 2 02:52:20 vtv3 sshd\[24	2019-09-02 15:36:54
113.193.30.98	attack	Sep 2 06:25:11 ip-172-31-1-72 sshd\[31123\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.193.30.98 user=ftp Sep 2 06:25:13 ip-172-31-1-72 sshd\[31123\]: Failed password for ftp from 113.193.30.98 port 20609 ssh2 Sep 2 06:29:46 ip-172-31-1-72 sshd\[31254\]: Invalid user karika from 113.193.30.98 Sep 2 06:29:46 ip-172-31-1-72 sshd\[31254\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.193.30.98 Sep 2 06:29:48 ip-172-31-1-72 sshd\[31254\]: Failed password for invalid user karika from 113.193.30.98 port 15287 ssh2	2019-09-02 15:05:13
222.186.52.89	attackbots	Automated report - ssh fail2ban: Sep 2 09:05:17 wrong password, user=root, port=29892, ssh2 Sep 2 09:05:20 wrong password, user=root, port=29892, ssh2 Sep 2 09:05:24 wrong password, user=root, port=29892, ssh2	2019-09-02 15:32:04
104.236.38.105	attackspam	Sep 2 08:34:11 meumeu sshd[14425]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.236.38.105 Sep 2 08:34:13 meumeu sshd[14425]: Failed password for invalid user steam from 104.236.38.105 port 40386 ssh2 Sep 2 08:38:04 meumeu sshd[14976]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.236.38.105 ...	2019-09-02 14:46:25
221.125.165.59	attackbotsspam	Sep 2 02:26:18 vps200512 sshd\[18639\]: Invalid user artur123 from 221.125.165.59 Sep 2 02:26:18 vps200512 sshd\[18639\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.125.165.59 Sep 2 02:26:21 vps200512 sshd\[18639\]: Failed password for invalid user artur123 from 221.125.165.59 port 38430 ssh2 Sep 2 02:30:38 vps200512 sshd\[18710\]: Invalid user buerocomputer from 221.125.165.59 Sep 2 02:30:38 vps200512 sshd\[18710\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.125.165.59	2019-09-02 14:46:51
80.55.175.172	attack	Automatic report - Port Scan Attack	2019-09-02 14:45:07
45.55.145.31	attackspambots	Sep 1 20:21:06 lcprod sshd\[7032\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.145.31 user=root Sep 1 20:21:09 lcprod sshd\[7032\]: Failed password for root from 45.55.145.31 port 40563 ssh2 Sep 1 20:25:01 lcprod sshd\[7392\]: Invalid user jack from 45.55.145.31 Sep 1 20:25:01 lcprod sshd\[7392\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.145.31 Sep 1 20:25:02 lcprod sshd\[7392\]: Failed password for invalid user jack from 45.55.145.31 port 33830 ssh2	2019-09-02 14:52:55
71.6.233.45	attackbots	" "	2019-09-02 15:24:48
210.120.112.18	attackbots	Sep 1 20:13:07 lcprod sshd\[6276\]: Invalid user osborn from 210.120.112.18 Sep 1 20:13:07 lcprod sshd\[6276\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=210.120.112.18 Sep 1 20:13:09 lcprod sshd\[6276\]: Failed password for invalid user osborn from 210.120.112.18 port 47920 ssh2 Sep 1 20:17:42 lcprod sshd\[6678\]: Invalid user wil from 210.120.112.18 Sep 1 20:17:42 lcprod sshd\[6678\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=210.120.112.18	2019-09-02 14:32:29
176.31.115.195	attackspambots	Sep 1 21:31:36 sachi sshd\[22267\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ns394272.ip-176-31-115.eu user=root Sep 1 21:31:39 sachi sshd\[22267\]: Failed password for root from 176.31.115.195 port 45244 ssh2 Sep 1 21:35:26 sachi sshd\[22597\]: Invalid user guest from 176.31.115.195 Sep 1 21:35:26 sachi sshd\[22597\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ns394272.ip-176-31-115.eu Sep 1 21:35:28 sachi sshd\[22597\]: Failed password for invalid user guest from 176.31.115.195 port 33024 ssh2	2019-09-02 15:39:03
117.218.63.25	attack	Feb 15 12:35:41 vtv3 sshd\[30623\]: Invalid user wwwdata from 117.218.63.25 port 41153 Feb 15 12:35:41 vtv3 sshd\[30623\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.218.63.25 Feb 15 12:35:43 vtv3 sshd\[30623\]: Failed password for invalid user wwwdata from 117.218.63.25 port 41153 ssh2 Feb 15 12:42:10 vtv3 sshd\[32214\]: Invalid user admin from 117.218.63.25 port 54095 Feb 15 12:42:10 vtv3 sshd\[32214\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.218.63.25 Feb 16 01:20:28 vtv3 sshd\[16308\]: Invalid user weblogic from 117.218.63.25 port 39354 Feb 16 01:20:28 vtv3 sshd\[16308\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.218.63.25 Feb 16 01:20:30 vtv3 sshd\[16308\]: Failed password for invalid user weblogic from 117.218.63.25 port 39354 ssh2 Feb 16 01:26:44 vtv3 sshd\[17851\]: Invalid user testuser from 117.218.63.25 port 51959 Feb 16 01:26:44 vtv3 sshd\[1	2019-09-02 14:42:37
200.233.131.21	attackspam	Sep 2 07:30:44 localhost sshd\[25179\]: Invalid user ds from 200.233.131.21 port 38465 Sep 2 07:30:44 localhost sshd\[25179\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.233.131.21 Sep 2 07:30:46 localhost sshd\[25179\]: Failed password for invalid user ds from 200.233.131.21 port 38465 ssh2	2019-09-02 14:39:55

Recently Reported IPs

45.42.107.190	151.80.20.166	158.140.122.138	27.79.166.157
113.134.242.128	125.123.77.234	178.106.170.38	114.47.104.206
189.41.229.243	81.215.47.254	191.98.205.239	142.93.211.44
81.215.226.142	186.42.175.250	27.254.174.209	114.244.39.182
193.58.196.146	177.86.109.3	118.25.149.250	190.72.23.223