220.134.11.45 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Taiwan (Province of China)

Internet Service Provider: Chunghwa Telecom Co. Ltd.

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspambots	Unauthorized connection attempt detected from IP address 220.134.11.45 to port 81 [J]	2020-03-03 09:14:47

Comments on same subnet:

IP	Type	Details	Datetime
220.134.110.61	attack	Found on CINS badguys / proto=6 . srcport=20636 . dstport=23 . (2876)	2020-09-19 21:12:11
220.134.110.61	attackbotsspam	Found on CINS badguys / proto=6 . srcport=20636 . dstport=23 . (2876)	2020-09-19 13:06:01
220.134.110.61	attackspam	Found on CINS badguys / proto=6 . srcport=20636 . dstport=23 . (2876)	2020-09-19 04:45:13
220.134.110.174	attackbots	port 23	2020-07-31 19:39:31
220.134.114.10	attackspam	Automatic report - Banned IP Access	2020-07-30 13:06:45
220.134.110.235	attackbotsspam	Unauthorized connection attempt detected from IP address 220.134.110.235 to port 85	2020-07-25 20:50:39
220.134.117.138	attack	Honeypot attack, port: 81, PTR: 220-134-117-138.HINET-IP.hinet.net.	2020-07-09 13:40:05
220.134.117.211	attackspambots	Honeypot attack, port: 81, PTR: 220-134-117-211.HINET-IP.hinet.net.	2020-06-04 04:23:44
220.134.11.77	attackspam	" "	2020-05-07 18:39:16
220.134.114.43	attackbotsspam	Automatic report - Port Scan	2020-03-27 13:49:44
220.134.116.53	attackspambots	suspicious action Fri, 28 Feb 2020 10:29:24 -0300	2020-02-29 02:19:25
220.134.116.120	attackbots	Unauthorized connection attempt detected from IP address 220.134.116.120 to port 81 [J]	2020-01-19 16:19:07
220.134.116.120	attackbotsspam	Honeypot attack, port: 81, PTR: 220-134-116-120.HINET-IP.hinet.net.	2020-01-04 18:56:09
220.134.117.46	attackbotsspam	" "	2019-11-26 06:38:53
220.134.117.46	attack	Port Scan	2019-10-24 00:12:17

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 220.134.11.45
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 23511
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;220.134.11.45.			IN	A

;; AUTHORITY SECTION:
.			583	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020030201 1800 900 604800 86400

;; Query time: 59 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Mar 03 09:14:41 CST 2020
;; MSG SIZE  rcvd: 117

Host info

45.11.134.220.in-addr.arpa domain name pointer 220-134-11-45.HINET-IP.hinet.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
45.11.134.220.in-addr.arpa	name = 220-134-11-45.HINET-IP.hinet.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
124.42.117.243	attackspam	Oct 30 21:36:25 vmanager6029 sshd\[27181\]: Invalid user eleve from 124.42.117.243 port 23577 Oct 30 21:36:25 vmanager6029 sshd\[27181\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.42.117.243 Oct 30 21:36:27 vmanager6029 sshd\[27181\]: Failed password for invalid user eleve from 124.42.117.243 port 23577 ssh2	2019-10-31 04:39:20
177.101.255.28	attackspam	Oct 30 20:28:08 game-panel sshd[16412]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.101.255.28 Oct 30 20:28:10 game-panel sshd[16412]: Failed password for invalid user minecraft from 177.101.255.28 port 57787 ssh2 Oct 30 20:32:42 game-panel sshd[16551]: Failed password for root from 177.101.255.28 port 48737 ssh2	2019-10-31 04:43:27
51.75.247.13	attackspambots	Aug 7 00:27:23 vtv3 sshd\[3515\]: Invalid user admin from 51.75.247.13 port 49179 Aug 7 00:27:23 vtv3 sshd\[3515\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.75.247.13 Aug 7 00:27:25 vtv3 sshd\[3515\]: Failed password for invalid user admin from 51.75.247.13 port 49179 ssh2 Aug 7 00:31:32 vtv3 sshd\[5517\]: Invalid user csgoserver from 51.75.247.13 port 47366 Aug 7 00:31:32 vtv3 sshd\[5517\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.75.247.13 Aug 7 00:43:38 vtv3 sshd\[11264\]: Invalid user rf from 51.75.247.13 port 42073 Aug 7 00:43:38 vtv3 sshd\[11264\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.75.247.13 Aug 7 00:43:41 vtv3 sshd\[11264\]: Failed password for invalid user rf from 51.75.247.13 port 42073 ssh2 Aug 7 00:47:47 vtv3 sshd\[13415\]: Invalid user rica from 51.75.247.13 port 40263 Aug 7 00:47:47 vtv3 sshd\[13415\]: pam_unix$sshd:auth$	2019-10-31 04:50:05
59.25.197.134	attack	2019-10-30T20:30:04.192052abusebot-5.cloudsearch.cf sshd\[21311\]: Invalid user bjorn from 59.25.197.134 port 40496	2019-10-31 04:34:09
23.129.64.190	attackbots	Unauthorized SSH login attempts	2019-10-31 04:34:36
74.208.175.37	attackbotsspam	Oct 29 17:08:20 nandi sshd[32675]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=74.208.175.37 user=r.r Oct 29 17:08:22 nandi sshd[32675]: Failed password for r.r from 74.208.175.37 port 43366 ssh2 Oct 29 17:08:22 nandi sshd[32675]: Received disconnect from 74.208.175.37: 11: Bye Bye [preauth] Oct 29 17:14:27 nandi sshd[6738]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=74.208.175.37 user=r.r Oct 29 17:14:29 nandi sshd[6738]: Failed password for r.r from 74.208.175.37 port 40570 ssh2 Oct 29 17:14:29 nandi sshd[6738]: Received disconnect from 74.208.175.37: 11: Bye Bye [preauth] Oct 29 17:18:28 nandi sshd[11574]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=74.208.175.37 user=nobody Oct 29 17:18:31 nandi sshd[11574]: Failed password for nobody from 74.208.175.37 port 54988 ssh2 Oct 29 17:18:31 nandi sshd[11574]: Received disconnect from 74.2........ -------------------------------	2019-10-31 04:41:38
67.205.139.165	attack	$f2bV_matches	2019-10-31 05:01:33
139.199.209.89	attack	Oct 30 21:25:15 localhost sshd\[13606\]: Invalid user Passw@rd from 139.199.209.89 Oct 30 21:25:15 localhost sshd\[13606\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.209.89 Oct 30 21:25:17 localhost sshd\[13606\]: Failed password for invalid user Passw@rd from 139.199.209.89 port 38182 ssh2 Oct 30 21:29:24 localhost sshd\[13729\]: Invalid user Www@2018 from 139.199.209.89 Oct 30 21:29:24 localhost sshd\[13729\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.209.89 ...	2019-10-31 04:58:38
197.248.205.53	attack	Oct 30 21:29:31 vmanager6029 sshd\[27041\]: Invalid user vk from 197.248.205.53 port 52552 Oct 30 21:29:31 vmanager6029 sshd\[27041\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=197.248.205.53 Oct 30 21:29:34 vmanager6029 sshd\[27041\]: Failed password for invalid user vk from 197.248.205.53 port 52552 ssh2	2019-10-31 04:53:21
220.137.91.27	attack	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/220.137.91.27/ TW - 1H : (219) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : TW NAME ASN : ASN3462 IP : 220.137.91.27 CIDR : 220.137.0.0/17 PREFIX COUNT : 390 UNIQUE IP COUNT : 12267520 ATTACKS DETECTED ASN3462 : 1H - 11 3H - 21 6H - 69 12H - 148 24H - 210 DateTime : 2019-10-30 21:29:49 INFO : HACK ! - Looking for resource vulnerabilities Scan Detected and Blocked by ADMIN - data recovery	2019-10-31 04:40:56
51.83.149.207	attackspam	[AUTOMATIC REPORT] - 21 tries in total - SSH BRUTE FORCE - IP banned	2019-10-31 04:36:55
106.75.17.245	attack	Oct 30 20:26:00 venus sshd\[28651\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.17.245 user=root Oct 30 20:26:02 venus sshd\[28651\]: Failed password for root from 106.75.17.245 port 48128 ssh2 Oct 30 20:29:52 venus sshd\[28695\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.17.245 user=root ...	2019-10-31 04:40:24
178.32.206.76	attack	Automatic report - XMLRPC Attack	2019-10-31 04:31:48
80.234.113.235	attackbotsspam	Chat Spam	2019-10-31 04:57:57
173.218.195.227	attackspam	Oct 29 17:09:47 reporting2 sshd[23675]: reveeclipse mapping checking getaddrinfo for 173-218-195-227-bast.mid.dyn.suddenlink.net [173.218.195.227] failed - POSSIBLE BREAK-IN ATTEMPT! Oct 29 17:09:47 reporting2 sshd[23675]: User r.r from 173.218.195.227 not allowed because not listed in AllowUsers Oct 29 17:09:47 reporting2 sshd[23675]: Failed password for invalid user r.r from 173.218.195.227 port 37964 ssh2 Oct 29 17:25:06 reporting2 sshd[31402]: reveeclipse mapping checking getaddrinfo for 173-218-195-227-bast.mid.dyn.suddenlink.net [173.218.195.227] failed - POSSIBLE BREAK-IN ATTEMPT! Oct 29 17:25:06 reporting2 sshd[31402]: User r.r from 173.218.195.227 not allowed because not listed in AllowUsers Oct 29 17:25:06 reporting2 sshd[31402]: Failed password for invalid user r.r from 173.218.195.227 port 51352 ssh2 Oct 29 17:29:23 reporting2 sshd[1034]: reveeclipse mapping checking getaddrinfo for 173-218-195-227-bast.mid.dyn.suddenlink.net [173.218.195.227] failed - POSSI........ -------------------------------	2019-10-31 04:49:26

Recently Reported IPs

197.238.72.13	79.207.53.236	140.233.233.53	52.49.63.167
48.121.202.54	159.125.183.236	203.125.44.19	221.178.21.25
163.67.221.123	216.182.176.57	195.20.98.204	109.185.147.3
124.144.115.177	219.222.2.0	104.133.170.137	91.121.183.15
51.161.34.34	200.84.84.56	165.54.172.22	74.77.110.222