1.34.72.81 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Taiwan, China

Internet Service Provider: Chunghwa Telecom Co. Ltd.

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	Attempted connection to port 23.	2020-08-14 06:03:17

Comments on same subnet:

IP	Type	Details	Datetime
1.34.72.160	attackspam	Unauthorized connection attempt detected from IP address 1.34.72.160 to port 81 [J]	2020-01-28 23:29:16
1.34.72.160	attackbots	Honeypot attack, port: 23, PTR: 1-34-72-160.HINET-IP.hinet.net.	2020-01-04 20:20:13
1.34.72.160	attack	Honeypot attack, port: 81, PTR: 1-34-72-160.HINET-IP.hinet.net.	2019-12-15 21:53:12
1.34.72.86	attackbots	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/1.34.72.86/ TW - 1H : (219) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : TW NAME ASN : ASN3462 IP : 1.34.72.86 CIDR : 1.34.0.0/16 PREFIX COUNT : 390 UNIQUE IP COUNT : 12267520 WYKRYTE ATAKI Z ASN3462 : 1H - 19 3H - 46 6H - 59 12H - 89 24H - 151 DateTime : 2019-10-01 05:51:15 INFO : Port MAX SCAN Scan Detected and Blocked by ADMIN - data recovery	2019-10-01 15:36:08

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 1.34.72.81
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 36208
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;1.34.72.81.			IN	A

;; AUTHORITY SECTION:
.			555	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020081302 1800 900 604800 86400

;; Query time: 844 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Aug 14 06:03:14 CST 2020
;; MSG SIZE  rcvd: 114

Host info

81.72.34.1.in-addr.arpa domain name pointer 1-34-72-81.HINET-IP.hinet.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
81.72.34.1.in-addr.arpa	name = 1-34-72-81.HINET-IP.hinet.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
115.52.120.59	attackbots	Trolling for resource vulnerabilities	2020-06-02 17:34:42
101.124.70.81	attack	prod6 ...	2020-06-02 17:36:56
139.199.164.21	attack	Jun 2 12:13:47 hosting sshd[19768]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.164.21 user=root Jun 2 12:13:49 hosting sshd[19768]: Failed password for root from 139.199.164.21 port 59102 ssh2 ...	2020-06-02 17:30:59
45.235.86.21	attackbotsspam	Jun 1 22:54:42 php1 sshd\[2509\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.235.86.21 user=root Jun 1 22:54:45 php1 sshd\[2509\]: Failed password for root from 45.235.86.21 port 52150 ssh2 Jun 1 22:58:46 php1 sshd\[2815\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.235.86.21 user=root Jun 1 22:58:48 php1 sshd\[2815\]: Failed password for root from 45.235.86.21 port 54800 ssh2 Jun 1 23:02:45 php1 sshd\[3149\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.235.86.21 user=root	2020-06-02 17:37:34
106.12.48.78	attackspambots	$f2bV_matches	2020-06-02 17:32:41
51.75.122.213	attackbots	2020-06-01 UTC: (48x) - root(48x)	2020-06-02 17:41:45
177.104.251.122	attack	5x Failed Password	2020-06-02 17:15:09
78.38.106.77	attackbots	Unauthorised access (Jun 2) SRC=78.38.106.77 LEN=52 TTL=116 ID=15261 DF TCP DPT=445 WINDOW=8192 SYN	2020-06-02 17:35:49
177.193.88.63	attackspam	SSH brute force attempt	2020-06-02 17:18:25
192.95.29.220	attackspam	192.95.29.220 - - [02/Jun/2020:09:12:34 +0100] "POST /wp-login.php HTTP/1.1" 200 5125 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/46.0.2490.80 Safari/537.36" 192.95.29.220 - - [02/Jun/2020:09:12:41 +0100] "POST /wp-login.php HTTP/1.1" 200 5125 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/46.0.2490.80 Safari/537.36" 192.95.29.220 - - [02/Jun/2020:09:13:02 +0100] "POST /wp-login.php HTTP/1.1" 200 5125 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/46.0.2490.80 Safari/537.36" ...	2020-06-02 17:27:58
119.94.0.56	attackbotsspam	"XSS Attack Detected via libinjection - Matched Data: XSS data found within ARGS_NAMES:	2020-06-02 17:16:03
161.35.103.140	attack	SSH/22 MH Probe, BF, Hack -	2020-06-02 17:23:15
96.93.193.158	attack	Unauthorized connection attempt detected from IP address 96.93.193.158 to port 23	2020-06-02 17:27:37
36.92.126.109	attack	$f2bV_matches \| Triggered by Fail2Ban at Vostok web server	2020-06-02 17:08:01
187.111.99.131	attack	SSH/22 MH Probe, BF, Hack -	2020-06-02 17:16:43

Recently Reported IPs

139.194.169.84	86.25.9.2	210.212.237.18	202.53.138.91
183.12.236.203	1.47.68.8	193.151.106.182	139.172.6.247
46.45.210.169	46.172.10.69	141.98.9.54	64.227.86.197
73.36.157.140	178.35.231.162	108.92.168.130	112.120.211.200
94.74.190.33	140.143.1.207	139.189.206.58	212.233.218.211