114.34.248.100

Basic Info

City: unknown

Region: unknown

Country: Taiwan, China

Internet Service Provider: Chunghwa Telecom Co. Ltd.

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	Jul 12 13:56:41 debian-2gb-nbg1-2 kernel: \[16813580.520839\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=114.34.248.100 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=53 ID=36591 PROTO=TCP SPT=32765 DPT=81 WINDOW=30453 RES=0x00 SYN URGP=0	2020-07-13 00:12:13

Type

Details

Datetime

attackspam

Jul 12 13:56:41 debian-2gb-nbg1-2 kernel: \[16813580.520839\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=114.34.248.100 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=53 ID=36591 PROTO=TCP SPT=32765 DPT=81 WINDOW=30453 RES=0x00 SYN URGP=0

2020-07-13 00:12:13

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 114.34.248.100
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 51382
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;114.34.248.100.			IN	A

;; AUTHORITY SECTION:
.			418	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020071200 1800 900 604800 86400

;; Query time: 41 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Jul 13 00:12:10 CST 2020
;; MSG SIZE  rcvd: 118

Host info

100.248.34.114.in-addr.arpa domain name pointer 114-34-248-100.HINET-IP.hinet.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
100.248.34.114.in-addr.arpa	name = 114-34-248-100.HINET-IP.hinet.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
178.128.216.127	attackspam	Nov 3 10:27:59 auw2 sshd\[8856\]: Invalid user ld from 178.128.216.127 Nov 3 10:27:59 auw2 sshd\[8856\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.216.127 Nov 3 10:28:01 auw2 sshd\[8856\]: Failed password for invalid user ld from 178.128.216.127 port 49804 ssh2 Nov 3 10:32:04 auw2 sshd\[9223\]: Invalid user demouser from 178.128.216.127 Nov 3 10:32:04 auw2 sshd\[9223\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.216.127	2019-11-04 04:46:25
213.144.176.218	attackspambots	TCP connect flood, port scan (port 80/TCP or 443/TCP or 22/TCP). Date: 2019 Nov 03. 15:05:21 Source IP: 213.144.176.218 Details: 2019 Nov 03 15:05:21 - TCP Connection warning: 460 connections from same ip address (213.144.176.218) 2019 Nov 03 15:10:34 - TCP Connection warning: 317 connections from same ip address (213.144.176.218) 2019 Nov 03 15:15:19 - TCP Connection warning: 322 connections from same ip address (213.144.176.218) 2019 Nov 03 15:20:16 - TCP Connection warning: 175 connections from same ip address (213.144.176.218)	2019-11-04 04:50:46
79.124.8.108	attackbotsspam	Time: Sun Nov 3 11:24:04 2019 -0300 IP: 79.124.8.108 (GB/United Kingdom/-) Failures: 30 (smtpauth) Interval: 3600 seconds Blocked: Permanent Block	2019-11-04 05:00:09
111.118.179.153	attack	[2019-11-0321:45:19 0100]info[cpaneld]111.118.179.153-titancap"POST/login/\?login_only=1HTTP/1.1"FAILEDLOGINcpaneld:accessdeniedforroot\,reseller\,anduserpassword[2019-11-0321:45:20 0100]info[cpaneld]111.118.179.153-titanc"POST/login/\?login_only=1HTTP/1.1"FAILEDLOGINcpaneld:invalidcpanelusertitanc\(has_cpuser_filefailed\)[2019-11-0321:45:21 0100]info[cpaneld]111.118.179.153-titanca"POST/login/\?login_only=1HTTP/1.1"FAILEDLOGINcpaneld:invalidcpanelusertitanca\(has_cpuser_filefailed\)[2019-11-0321:45:22 0100]info[cpaneld]111.118.179.153-titan"POST/login/\?login_only=1HTTP/1.1"FAILEDLOGINcpaneld:invalidcpanelusertitan\(has_cpuser_filefailed\)[2019-11-0321:45:22 0100]info[cpaneld]111.118.179.153-titancapi"POST/login/\?login_only=1HTTP/1.1"FAILEDLOGINcpaneld:invalidcpanelusertitancapi\(has_cpuser_filefailed\)	2019-11-04 04:58:37
45.143.220.18	attackbots	03.11.2019 19:39:30 Connection to port 5060 blocked by firewall	2019-11-04 04:47:59
14.170.194.28	attack	Unauthorized connection attempt from IP address 14.170.194.28 on Port 445(SMB)	2019-11-04 04:54:15
14.207.126.207	attack	Unauthorized connection attempt from IP address 14.207.126.207 on Port 445(SMB)	2019-11-04 04:43:26
74.208.47.8	attackspambots	74.208.47.8 - - \[03/Nov/2019:18:29:10 +0000\] "POST /wp-login.php HTTP/1.1" 200 4358 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 74.208.47.8 - - \[03/Nov/2019:18:29:10 +0000\] "POST /xmlrpc.php HTTP/1.1" 200 403 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" ...	2019-11-04 04:39:30
121.201.74.182	attackbots	Drupal Core Remote Code Execution Vulnerability	2019-11-04 04:46:52
188.226.226.82	attack	Nov 3 15:26:18 MK-Soft-VM5 sshd[3886]: Failed password for root from 188.226.226.82 port 42446 ssh2 ...	2019-11-04 04:43:58
61.182.82.34	attack	'IP reached maximum auth failures for a one day block'	2019-11-04 04:57:29
197.156.72.154	attack	Nov 3 15:58:23 andromeda sshd\[37054\]: Invalid user user from 197.156.72.154 port 39211 Nov 3 15:58:23 andromeda sshd\[37054\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=197.156.72.154 Nov 3 15:58:25 andromeda sshd\[37054\]: Failed password for invalid user user from 197.156.72.154 port 39211 ssh2	2019-11-04 04:48:24
120.92.153.47	attackbotsspam	Nov 3 19:51:33 zeus postfix/smtpd\[28034\]: warning: unknown\[120.92.153.47\]: SASL LOGIN authentication failed: authentication failure Nov 3 19:51:35 zeus postfix/smtpd\[28034\]: warning: unknown\[120.92.153.47\]: SASL LOGIN authentication failed: authentication failure Nov 3 19:51:39 zeus postfix/smtpd\[28034\]: warning: unknown\[120.92.153.47\]: SASL LOGIN authentication failed: authentication failure ...	2019-11-04 04:52:20
151.80.254.75	attackspambots	Nov 3 21:13:47 srv01 sshd[7157]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=151.80.254.75 user=root Nov 3 21:13:49 srv01 sshd[7157]: Failed password for root from 151.80.254.75 port 49716 ssh2 Nov 3 21:17:18 srv01 sshd[7341]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=151.80.254.75 user=root Nov 3 21:17:20 srv01 sshd[7341]: Failed password for root from 151.80.254.75 port 59770 ssh2 Nov 3 21:21:11 srv01 sshd[7729]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=151.80.254.75 user=root Nov 3 21:21:12 srv01 sshd[7729]: Failed password for root from 151.80.254.75 port 41606 ssh2 ...	2019-11-04 04:49:29
120.133.1.16	attackbots	pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.133.1.16 Failed password for invalid user io from 120.133.1.16 port 57266 ssh2 Invalid user remoto from 120.133.1.16 port 54654 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.133.1.16 Failed password for invalid user remoto from 120.133.1.16 port 54654 ssh2	2019-11-04 04:59:19

Recently Reported IPs

207.244.86.169	194.187.249.185	134.122.108.208	103.240.245.6
117.80.0.251	113.125.178.204	151.175.209.92	2.204.217.227
52.14.197.204	181.188.194.145	37.49.230.120	14.252.129.252
138.187.224.109	140.130.88.171	65.174.166.170	52.46.59.168
103.85.23.161	98.142.142.24	119.184.114.147	183.66.178.138