118.163.11.21 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Taiwan, Province of China

Internet Service Provider: Chunghwa Telecom Co. Ltd.

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspambots	Unauthorized connection attempt from IP address 118.163.11.21 on Port 445(SMB)	2020-05-24 19:08:12

Comments on same subnet:

IP	Type	Details	Datetime
118.163.115.18	attackspam	(sshd) Failed SSH login from 118.163.115.18 (TW/Taiwan/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 13 04:47:10 idl1-dfw sshd[198052]: Invalid user gabriel from 118.163.115.18 port 45531 Sep 13 04:47:15 idl1-dfw sshd[198052]: Failed password for invalid user gabriel from 118.163.115.18 port 45531 ssh2 Sep 13 05:23:15 idl1-dfw sshd[243127]: Invalid user pvkii from 118.163.115.18 port 38955 Sep 13 05:23:17 idl1-dfw sshd[243127]: Failed password for invalid user pvkii from 118.163.115.18 port 38955 ssh2 Sep 13 05:23:53 idl1-dfw sshd[243630]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.163.115.18 user=root	2020-09-14 02:19:02
118.163.115.18	attackbots	(sshd) Failed SSH login from 118.163.115.18 (TW/Taiwan/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 13 04:47:10 idl1-dfw sshd[198052]: Invalid user gabriel from 118.163.115.18 port 45531 Sep 13 04:47:15 idl1-dfw sshd[198052]: Failed password for invalid user gabriel from 118.163.115.18 port 45531 ssh2 Sep 13 05:23:15 idl1-dfw sshd[243127]: Invalid user pvkii from 118.163.115.18 port 38955 Sep 13 05:23:17 idl1-dfw sshd[243127]: Failed password for invalid user pvkii from 118.163.115.18 port 38955 ssh2 Sep 13 05:23:53 idl1-dfw sshd[243630]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.163.115.18 user=root	2020-09-13 18:16:23
118.163.118.126	attack	Telnet/23 MH Probe, Scan, BF, Hack -	2020-04-13 17:19:18
118.163.118.135	attackspambots	Wed Mar 4 08:44:58 2020 - Child process 161608 handling connection Wed Mar 4 08:44:58 2020 - New connection from: 118.163.118.135:48982 Wed Mar 4 08:44:58 2020 - Sending data to client: [Login: ] Wed Mar 4 08:45:28 2020 - Child aborting Wed Mar 4 08:45:28 2020 - Reporting IP address: 118.163.118.135 - mflag: 0	2020-03-05 03:03:52
118.163.118.126	attack	Sat Feb 15 09:01:38 2020 - Child process 60572 handling connection Sat Feb 15 09:01:38 2020 - New connection from: 118.163.118.126:51747 Sat Feb 15 09:01:38 2020 - Sending data to client: [Login: ] Sat Feb 15 09:02:08 2020 - Child aborting Sat Feb 15 09:02:08 2020 - Reporting IP address: 118.163.118.126 - mflag: 0	2020-02-16 02:51:27
118.163.118.135	attack	Unauthorized connection attempt detected from IP address 118.163.118.135 to port 23 [J]	2020-01-05 01:39:15
118.163.117.187	attackspambots	Unauthorized connection attempt from IP address 118.163.117.187 on Port 445(SMB)	2019-10-31 19:15:09
118.163.111.221	attackspam	Oct 28 10:03:17 vps691689 sshd[23573]: Failed password for root from 118.163.111.221 port 60014 ssh2 Oct 28 10:07:21 vps691689 sshd[23604]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.163.111.221 ...	2019-10-28 17:07:56
118.163.110.145	attack	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/118.163.110.145/ TW - 1H : (85) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : TW NAME ASN : ASN3462 IP : 118.163.110.145 CIDR : 118.163.0.0/16 PREFIX COUNT : 390 UNIQUE IP COUNT : 12267520 ATTACKS DETECTED ASN3462 : 1H - 3 3H - 11 6H - 27 12H - 39 24H - 73 DateTime : 2019-10-23 05:54:52 INFO : HACK ! - Looking for resource vulnerabilities Scan Detected and Blocked by ADMIN - data recovery	2019-10-23 14:45:43
118.163.111.221	attackbotsspam	2019-10-16T11:02:59.496787enmeeting.mahidol.ac.th sshd\[1505\]: Invalid user ftpuser from 118.163.111.221 port 60594 2019-10-16T11:02:59.517941enmeeting.mahidol.ac.th sshd\[1505\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118-163-111-221.hinet-ip.hinet.net 2019-10-16T11:03:01.119387enmeeting.mahidol.ac.th sshd\[1505\]: Failed password for invalid user ftpuser from 118.163.111.221 port 60594 ssh2 ...	2019-10-16 13:19:36
118.163.113.85	attackbotsspam	445/tcp 445/tcp 445/tcp... [2019-07-01/08-27]16pkt,1pt.(tcp)	2019-08-28 12:08:01

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 118.163.11.21
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 38997
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;118.163.11.21.			IN	A

;; AUTHORITY SECTION:
.			589	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020052400 1800 900 604800 86400

;; Query time: 142 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun May 24 19:08:07 CST 2020
;; MSG SIZE  rcvd: 117

Host info

21.11.163.118.in-addr.arpa domain name pointer 118-163-11-21.HINET-IP.hinet.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
21.11.163.118.in-addr.arpa	name = 118-163-11-21.HINET-IP.hinet.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
222.186.175.140	attackspam	2019-09-23T07:47:38.575579abusebot-5.cloudsearch.cf sshd\[31804\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.140 user=root	2019-09-23 15:55:59
112.85.42.72	attackspam	Sep 23 05:10:11 game-panel sshd[1438]: Failed password for root from 112.85.42.72 port 23308 ssh2 Sep 23 05:10:13 game-panel sshd[1438]: Failed password for root from 112.85.42.72 port 23308 ssh2 Sep 23 05:10:16 game-panel sshd[1438]: Failed password for root from 112.85.42.72 port 23308 ssh2	2019-09-23 16:33:32
145.239.82.192	attack	Sep 23 09:10:51 microserver sshd[59722]: Invalid user zz from 145.239.82.192 port 42200 Sep 23 09:10:51 microserver sshd[59722]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=145.239.82.192 Sep 23 09:10:53 microserver sshd[59722]: Failed password for invalid user zz from 145.239.82.192 port 42200 ssh2 Sep 23 09:15:01 microserver sshd[59942]: Invalid user lanto from 145.239.82.192 port 54712 Sep 23 09:15:01 microserver sshd[59942]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=145.239.82.192 Sep 23 09:27:13 microserver sshd[61846]: Invalid user test from 145.239.82.192 port 35784 Sep 23 09:27:13 microserver sshd[61846]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=145.239.82.192 Sep 23 09:27:15 microserver sshd[61846]: Failed password for invalid user test from 145.239.82.192 port 35784 ssh2 Sep 23 09:31:15 microserver sshd[62485]: Invalid user postgres from 145.239.82.192 port 48296 S	2019-09-23 15:53:50
50.236.62.30	attackbots	Sep 23 09:20:26 vps647732 sshd[32307]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=50.236.62.30 Sep 23 09:20:28 vps647732 sshd[32307]: Failed password for invalid user ooooo from 50.236.62.30 port 35719 ssh2 ...	2019-09-23 16:31:20
68.183.230.121	attackspambots	Sep 23 03:51:45 ny01 sshd[8198]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.230.121 Sep 23 03:51:48 ny01 sshd[8198]: Failed password for invalid user test from 68.183.230.121 port 34290 ssh2 Sep 23 03:56:13 ny01 sshd[9423]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.230.121	2019-09-23 16:04:53
114.141.104.45	attackbotsspam	Sep 22 22:16:23 php1 sshd\[21304\]: Invalid user ramon from 114.141.104.45 Sep 22 22:16:23 php1 sshd\[21304\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.141.104.45 Sep 22 22:16:25 php1 sshd\[21304\]: Failed password for invalid user ramon from 114.141.104.45 port 59085 ssh2 Sep 22 22:22:58 php1 sshd\[21879\]: Invalid user member from 114.141.104.45 Sep 22 22:22:58 php1 sshd\[21879\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.141.104.45	2019-09-23 16:34:09
222.188.75.201	attack	Unauthorized SSH login attempts	2019-09-23 16:02:20
217.64.135.69	attack	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/217.64.135.69/ RU - 1H : (267) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : RU NAME ASN : ASN60098 IP : 217.64.135.69 CIDR : 217.64.128.0/21 PREFIX COUNT : 19 UNIQUE IP COUNT : 15360 WYKRYTE ATAKI Z ASN60098 : 1H - 1 3H - 1 6H - 1 12H - 1 24H - 2 INFO : SERVER - ABB - Looking for resource vulnerabilities Detected and Blocked by ADMIN - data recovery	2019-09-23 16:16:52
116.92.208.100	attack	Sep 23 06:25:46 rpi sshd[6312]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.92.208.100 Sep 23 06:25:48 rpi sshd[6312]: Failed password for invalid user amilcar from 116.92.208.100 port 46538 ssh2	2019-09-23 16:02:45
121.201.38.177	attackbotsspam	SMTP:25. Blocked 12 login attempts in 46 days.	2019-09-23 16:14:45
212.87.9.141	attackspambots	Sep 23 03:53:25 debian sshd\[19640\]: Invalid user tijah from 212.87.9.141 port 46960 Sep 23 03:53:25 debian sshd\[19640\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.87.9.141 Sep 23 03:53:28 debian sshd\[19640\]: Failed password for invalid user tijah from 212.87.9.141 port 46960 ssh2 ...	2019-09-23 15:57:34
139.162.74.16	attack	ssh intrusion attempt	2019-09-23 16:08:09
173.255.218.90	attackbotsspam	Sep 22 17:49:55 aiointranet sshd\[27483\]: Invalid user user from 173.255.218.90 Sep 22 17:49:55 aiointranet sshd\[27483\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=li228-90.members.linode.com Sep 22 17:49:57 aiointranet sshd\[27483\]: Failed password for invalid user user from 173.255.218.90 port 54562 ssh2 Sep 22 17:53:19 aiointranet sshd\[27808\]: Invalid user sx from 173.255.218.90 Sep 22 17:53:19 aiointranet sshd\[27808\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=li228-90.members.linode.com	2019-09-23 16:14:22
222.186.42.241	attackspam	$f2bV_matches	2019-09-23 16:30:30
217.36.223.29	attack	Sep 23 07:51:13 vps647732 sshd[30329]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=217.36.223.29 Sep 23 07:51:15 vps647732 sshd[30329]: Failed password for invalid user qhfc from 217.36.223.29 port 42623 ssh2 ...	2019-09-23 16:01:02

Recently Reported IPs

197.44.124.107	74.149.236.64	191.234.255.147	61.99.13.112
162.243.145.54	10.255.237.119	247.155.124.196	254.155.233.254
103.219.71.210	233.89.242.49	64.150.206.181	29.171.116.60
117.42.250.47	103.219.71.226	87.251.74.210	62.75.142.61
52.144.78.148	42.201.185.145	178.176.171.27	123.240.103.57