210.242.252.134

Basic Info

City: unknown

Region: unknown

Country: Taiwan, China

Internet Service Provider: Chunghwa Telecom Co. Ltd.

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	Telnetd brute force attack detected by fail2ban	2020-03-13 16:05:21

Comments on same subnet:

IP	Type	Details	Datetime
210.242.252.80	attackbots	Port Scan: TCP/23	2019-09-14 13:28:00

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 210.242.252.134
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 16215
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;210.242.252.134.		IN	A

;; AUTHORITY SECTION:
.			525	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020031300 1800 900 604800 86400

;; Query time: 38 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Mar 13 16:05:14 CST 2020
;; MSG SIZE  rcvd: 119

Host info

134.252.242.210.in-addr.arpa domain name pointer 210-242-252-134.HINET-IP.hinet.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
134.252.242.210.in-addr.arpa	name = 210-242-252-134.HINET-IP.hinet.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
167.114.5.203	attackspambots	Invalid user ems from 167.114.5.203 port 47224	2019-10-31 08:25:18
31.147.104.6	attackbotsspam	Port 1433 Scan	2019-10-31 08:21:54
89.248.167.131	attackspambots	ET CINS Active Threat Intelligence Poor Reputation IP group 85 - port: 119 proto: TCP cat: Misc Attack	2019-10-31 08:07:14
85.93.20.92	attackbotsspam	191030 19:51:32 \[Warning\] Access denied for user 'root'@'85.93.20.92' \(using password: YES\) 191030 21:49:18 \[Warning\] Access denied for user 'root'@'85.93.20.92' \(using password: YES\) 191030 23:47:28 \[Warning\] Access denied for user 'root'@'85.93.20.92' \(using password: YES\) ...	2019-10-31 12:04:39
185.156.73.52	attack	10/31/2019-00:01:13.984559 185.156.73.52 Protocol: 6 ET SCAN NMAP -sS window 1024	2019-10-31 12:03:35
121.204.143.153	attackbots	Oct 30 22:19:10 server sshd\[23858\]: User root from 121.204.143.153 not allowed because listed in DenyUsers Oct 30 22:19:10 server sshd\[23858\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.204.143.153 user=root Oct 30 22:19:12 server sshd\[23858\]: Failed password for invalid user root from 121.204.143.153 port 44508 ssh2 Oct 30 22:23:47 server sshd\[25416\]: User root from 121.204.143.153 not allowed because listed in DenyUsers Oct 30 22:23:47 server sshd\[25416\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.204.143.153 user=root	2019-10-31 08:11:06
103.76.252.6	attackspam	SSH invalid-user multiple login try	2019-10-31 08:21:11
212.64.106.151	attackbotsspam	Oct 31 04:38:24 fr01 sshd[1059]: Invalid user jason4 from 212.64.106.151 Oct 31 04:38:24 fr01 sshd[1059]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.64.106.151 Oct 31 04:38:24 fr01 sshd[1059]: Invalid user jason4 from 212.64.106.151 Oct 31 04:38:27 fr01 sshd[1059]: Failed password for invalid user jason4 from 212.64.106.151 port 59141 ssh2 Oct 31 04:57:42 fr01 sshd[4497]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.64.106.151 user=root Oct 31 04:57:45 fr01 sshd[4497]: Failed password for root from 212.64.106.151 port 23838 ssh2 ...	2019-10-31 12:00:28
218.86.123.242	attackspambots	[Aegis] @ 2019-10-30 21:23:44 0000 -> Attempted Administrator Privilege Gain: ET SCAN LibSSH Based Frequent SSH Connections Likely BruteForce Attack	2019-10-31 08:09:06
165.22.78.222	attackbotsspam	Oct 31 01:29:40 lnxded63 sshd[25208]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.78.222	2019-10-31 08:33:04
187.109.10.100	attackspam	Oct 30 23:05:38 meumeu sshd[694]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.109.10.100 Oct 30 23:05:40 meumeu sshd[694]: Failed password for invalid user pP123456789 from 187.109.10.100 port 34792 ssh2 Oct 30 23:10:00 meumeu sshd[1327]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.109.10.100 ...	2019-10-31 08:08:24
222.211.162.211	attackspambots	2019-10-30T23:30:13.500469abusebot-5.cloudsearch.cf sshd\[23516\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.211.162.211 user=root	2019-10-31 08:07:38
5.46.172.74	attack	LGS,WP GET /wp-login.php	2019-10-31 08:36:00
200.146.232.97	attackbotsspam	2019-10-30T23:42:30.211304shield sshd\[302\]: Invalid user tb5 from 200.146.232.97 port 34730 2019-10-30T23:42:30.217010shield sshd\[302\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.146.232.97 2019-10-30T23:42:32.370053shield sshd\[302\]: Failed password for invalid user tb5 from 200.146.232.97 port 34730 ssh2 2019-10-30T23:49:07.680635shield sshd\[1994\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.146.232.97 user=root 2019-10-30T23:49:10.335432shield sshd\[1994\]: Failed password for root from 200.146.232.97 port 51564 ssh2	2019-10-31 08:06:58
27.111.85.60	attack	Oct 30 22:27:43 MK-Soft-VM6 sshd[18678]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.111.85.60 Oct 30 22:27:45 MK-Soft-VM6 sshd[18678]: Failed password for invalid user mathlida from 27.111.85.60 port 56457 ssh2 ...	2019-10-31 08:09:48

Recently Reported IPs

36.81.206.209	192.241.237.224	217.112.142.251	181.1.88.153
217.112.142.108	134.73.51.80	69.94.141.94	125.237.148.29
153.136.232.120	112.164.3.186	182.70.142.244	120.216.241.204
178.171.69.36	202.181.24.28	105.241.170.29	78.179.188.111
21.178.102.180	240.39.57.89	4.42.95.210	199.212.221.106