122.116.34.164

Basic Info

City: unknown

Region: unknown

Country: Taiwan, China

Internet Service Provider: Chunghwa Telecom Co. Ltd.

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Telnet/23 MH Probe, Scan, BF, Hack -	2020-06-01 15:45:11

Comments on same subnet:

IP	Type	Details	Datetime
122.116.34.136	attackbotsspam	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/122.116.34.136/ TW - 1H : (114) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : TW NAME ASN : ASN3462 IP : 122.116.34.136 CIDR : 122.116.0.0/16 PREFIX COUNT : 390 UNIQUE IP COUNT : 12267520 ATTACKS DETECTED ASN3462 : 1H - 4 3H - 10 6H - 23 12H - 44 24H - 97 DateTime : 2019-10-19 14:05:52 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery	2019-10-19 20:10:04

Type

Details

Datetime

122.116.34.136

attackbotsspam

IP Ban Report :  
 https://help-dysk.pl/wordpress-firewall-plugins/ip/122.116.34.136/ 
 
 TW - 1H : (114)  
 Protection Against DDoS WordPress plugin :  
 "odzyskiwanie danych help-dysk" 
 IP Address Ranges by Country : TW 
 NAME ASN : ASN3462 
 
 IP : 122.116.34.136 
 
 CIDR : 122.116.0.0/16 
 
 PREFIX COUNT : 390 
 
 UNIQUE IP COUNT : 12267520 
 
 
 ATTACKS DETECTED ASN3462 :  
  1H - 4 
  3H - 10 
  6H - 23 
 12H - 44 
 24H - 97 
 
 DateTime : 2019-10-19 14:05:52 
 
 INFO : Port Scan TELNET Detected and Blocked by ADMIN  - data recovery

2019-10-19 20:10:04

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 122.116.34.164
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 9285
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;122.116.34.164.			IN	A

;; AUTHORITY SECTION:
.			340	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020060100 1800 900 604800 86400

;; Query time: 74 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Jun 01 15:45:07 CST 2020
;; MSG SIZE  rcvd: 118

Host info

164.34.116.122.in-addr.arpa domain name pointer cs.chinshing-rental.com.tw.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
164.34.116.122.in-addr.arpa	name = cs.chinshing-rental.com.tw.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
106.12.222.252	attackspambots	$f2bV_matches	2020-04-03 16:43:58
205.185.113.140	attack	B: ssh repeated attack for invalid user	2020-04-03 17:10:15
91.126.33.138	attackspam	Apr 2 14:12:55 cumulus sshd[4862]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.126.33.138 user=r.r Apr 2 14:12:57 cumulus sshd[4862]: Failed password for r.r from 91.126.33.138 port 13780 ssh2 Apr 2 14:12:57 cumulus sshd[4862]: Received disconnect from 91.126.33.138 port 13780:11: Bye Bye [preauth] Apr 2 14:12:57 cumulus sshd[4862]: Disconnected from 91.126.33.138 port 13780 [preauth] Apr 2 14:17:59 cumulus sshd[5060]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.126.33.138 user=r.r Apr 2 14:18:02 cumulus sshd[5060]: Failed password for r.r from 91.126.33.138 port 17937 ssh2 Apr 2 14:18:02 cumulus sshd[5060]: Received disconnect from 91.126.33.138 port 17937:11: Bye Bye [preauth] Apr 2 14:18:02 cumulus sshd[5060]: Disconnected from 91.126.33.138 port 17937 [preauth] Apr 2 14:21:49 cumulus sshd[5291]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 t........ -------------------------------	2020-04-03 16:35:04
202.43.146.107	attack	Invalid user anf from 202.43.146.107 port 14551	2020-04-03 17:21:22
13.73.96.148	attackbots	Attacker from this IP address used false windows credentials to login to mailbox and send malicious emails. Appears to be an active Azure Virtual Machine.	2020-04-03 16:43:33
37.187.102.226	attackspam	Apr 2 16:29:44 s158375 sshd[23868]: Failed password for root from 37.187.102.226 port 33000 ssh2	2020-04-03 17:03:31
51.38.80.173	attackbots	Apr 3 10:42:51 vps sshd[789057]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=173.ip-51-38-80.eu user=root Apr 3 10:42:52 vps sshd[789057]: Failed password for root from 51.38.80.173 port 44224 ssh2 Apr 3 10:46:44 vps sshd[810019]: Invalid user www from 51.38.80.173 port 56726 Apr 3 10:46:44 vps sshd[810019]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=173.ip-51-38-80.eu Apr 3 10:46:46 vps sshd[810019]: Failed password for invalid user www from 51.38.80.173 port 56726 ssh2 ...	2020-04-03 16:53:47
141.98.10.141	attackbots	Apr 3 10:20:19 srv01 postfix/smtpd\[8888\]: warning: unknown\[141.98.10.141\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Apr 3 10:22:35 srv01 postfix/smtpd\[28714\]: warning: unknown\[141.98.10.141\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Apr 3 10:23:33 srv01 postfix/smtpd\[31081\]: warning: unknown\[141.98.10.141\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Apr 3 10:23:54 srv01 postfix/smtpd\[31081\]: warning: unknown\[141.98.10.141\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Apr 3 10:39:05 srv01 postfix/smtpd\[8888\]: warning: unknown\[141.98.10.141\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-04-03 16:39:41
119.123.153.219	attack	Attempt to attack host OS, exploiting network vulnerabilities, on 03-04-2020 04:50:09.	2020-04-03 17:20:59
54.65.253.129	attack	Fail2Ban Ban Triggered	2020-04-03 16:36:16
182.61.10.28	attack	Apr 3 06:52:48 localhost sshd\[31268\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.10.28 user=root Apr 3 06:52:50 localhost sshd\[31268\]: Failed password for root from 182.61.10.28 port 51174 ssh2 Apr 3 06:55:42 localhost sshd\[31485\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.10.28 user=root Apr 3 06:55:44 localhost sshd\[31485\]: Failed password for root from 182.61.10.28 port 60278 ssh2 Apr 3 06:58:44 localhost sshd\[31548\]: Invalid user test from 182.61.10.28 Apr 3 06:58:44 localhost sshd\[31548\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.10.28 ...	2020-04-03 17:04:27
113.161.66.214	attackspambots	20 attempts against mh-ssh on cloud	2020-04-03 16:34:33
128.199.150.11	attackspambots	$f2bV_matches	2020-04-03 17:08:54
119.252.143.102	attack	Invalid user xm from 119.252.143.102 port 56904	2020-04-03 16:55:37
115.84.253.162	attackbotsspam	Apr 3 10:33:41 minden010 sshd[4899]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.84.253.162 Apr 3 10:33:43 minden010 sshd[4899]: Failed password for invalid user syx from 115.84.253.162 port 56424 ssh2 Apr 3 10:38:05 minden010 sshd[6954]: Failed password for root from 115.84.253.162 port 31992 ssh2 ...	2020-04-03 16:40:28

Recently Reported IPs

120.88.157.66	114.32.245.156	189.186.12.111	118.70.182.29
5.144.130.16	104.193.128.114	58.111.240.87	112.228.2.252
52.81.39.140	12.61.224.111	87.44.239.252	38.42.167.187
15.46.123.117	134.235.178.139	90.19.222.37	117.92.202.51
17.152.173.84	190.82.58.74	189.127.135.41	46.141.166.142