220.134.158.14

Basic Info

City: unknown

Region: unknown

Country: Taiwan, China

Internet Service Provider: Chunghwa Telecom Co. Ltd.

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspambots	TCP (SYN) 220.134.158.14:14049 -> port 23, len 40	2020-09-04 04:13:05
attackspambots	TCP (SYN) 220.134.158.14:14049 -> port 23, len 40	2020-09-03 19:53:56

Comments on same subnet:

IP	Type	Details	Datetime
220.134.158.136	attackspambots	Unauthorized connection attempt detected from IP address 220.134.158.136 to port 5555 [T]	2020-04-15 00:12:52
220.134.158.106	attack	Scanning random ports - tries to find possible vulnerable services	2020-02-24 07:39:37

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 220.134.158.14
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 16889
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;220.134.158.14.			IN	A

;; AUTHORITY SECTION:
.			178	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020090300 1800 900 604800 86400

;; Query time: 66 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Sep 03 19:53:51 CST 2020
;; MSG SIZE  rcvd: 118

Host info

14.158.134.220.in-addr.arpa domain name pointer 220-134-158-14.HINET-IP.hinet.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
14.158.134.220.in-addr.arpa	name = 220-134-158-14.HINET-IP.hinet.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
192.99.34.42	attack	www noscript ...	2020-04-14 08:03:57
180.168.95.234	attack	prod8 ...	2020-04-14 08:08:31
128.199.169.102	attack	Invalid user spravce from 128.199.169.102 port 34241	2020-04-14 08:13:09
122.155.223.38	attack	2020-04-13T23:44:15.965334abusebot-7.cloudsearch.cf sshd[15013]: Invalid user admin from 122.155.223.38 port 46294 2020-04-13T23:44:15.968862abusebot-7.cloudsearch.cf sshd[15013]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.155.223.38 2020-04-13T23:44:15.965334abusebot-7.cloudsearch.cf sshd[15013]: Invalid user admin from 122.155.223.38 port 46294 2020-04-13T23:44:18.592273abusebot-7.cloudsearch.cf sshd[15013]: Failed password for invalid user admin from 122.155.223.38 port 46294 ssh2 2020-04-13T23:46:35.840015abusebot-7.cloudsearch.cf sshd[15220]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.155.223.38 user=root 2020-04-13T23:46:37.349517abusebot-7.cloudsearch.cf sshd[15220]: Failed password for root from 122.155.223.38 port 37012 ssh2 2020-04-13T23:49:02.271321abusebot-7.cloudsearch.cf sshd[15348]: Invalid user gmalloy from 122.155.223.38 port 55952 ...	2020-04-14 07:59:44
145.239.78.59	attackbotsspam	Invalid user admin from 145.239.78.59 port 53108	2020-04-14 08:05:29
185.11.232.10	attackbots	Apr 13 19:06:17 Tower sshd[37984]: Connection from 185.11.232.10 port 34166 on 192.168.10.220 port 22 rdomain "" Apr 13 19:06:17 Tower sshd[37984]: Failed password for root from 185.11.232.10 port 34166 ssh2 Apr 13 19:06:18 Tower sshd[37984]: Received disconnect from 185.11.232.10 port 34166:11: Bye Bye [preauth] Apr 13 19:06:18 Tower sshd[37984]: Disconnected from authenticating user root 185.11.232.10 port 34166 [preauth]	2020-04-14 07:57:32
185.59.66.233	attackbotsspam	185.59.66.233 - - [13/Apr/2020:19:11:26 +0200] "POST /boaform/admin/formPing HTTP/1.1" 400 0 "-" "polaris botnet"	2020-04-14 08:33:06
178.128.81.60	attack	Invalid user matt from 178.128.81.60 port 48804	2020-04-14 07:54:22
202.70.65.229	attackbotsspam	Apr 13 19:03:18 srv-ubuntu-dev3 sshd[18380]: Invalid user michel from 202.70.65.229 Apr 13 19:03:18 srv-ubuntu-dev3 sshd[18380]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.70.65.229 Apr 13 19:03:18 srv-ubuntu-dev3 sshd[18380]: Invalid user michel from 202.70.65.229 Apr 13 19:03:21 srv-ubuntu-dev3 sshd[18380]: Failed password for invalid user michel from 202.70.65.229 port 36678 ssh2 Apr 13 19:07:24 srv-ubuntu-dev3 sshd[19050]: Invalid user phion from 202.70.65.229 Apr 13 19:07:24 srv-ubuntu-dev3 sshd[19050]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.70.65.229 Apr 13 19:07:24 srv-ubuntu-dev3 sshd[19050]: Invalid user phion from 202.70.65.229 Apr 13 19:07:26 srv-ubuntu-dev3 sshd[19050]: Failed password for invalid user phion from 202.70.65.229 port 58036 ssh2 Apr 13 19:11:28 srv-ubuntu-dev3 sshd[19666]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost= ...	2020-04-14 08:29:52
51.144.86.109	attackbotsspam	Apr 13 22:19:41 XXX sshd[52372]: Invalid user admin from 51.144.86.109 port 11200	2020-04-14 08:07:33
51.83.125.8	attackbotsspam	$f2bV_matches \| Triggered by Fail2Ban at Vostok web server	2020-04-14 08:00:32
180.114.189.90	attack	SSH brute-force attempt	2020-04-14 08:14:40
222.186.169.194	attack	Apr 14 01:47:42 ns381471 sshd[8346]: Failed password for root from 222.186.169.194 port 55460 ssh2 Apr 14 01:47:46 ns381471 sshd[8346]: Failed password for root from 222.186.169.194 port 55460 ssh2	2020-04-14 07:56:01
106.13.34.173	attack	Automatic report BANNED IP	2020-04-14 08:16:18
104.248.37.217	attack	xmlrpc attack	2020-04-14 08:26:20

Recently Reported IPs

10.116.81.141	48.210.207.120	165.2.4.116	132.203.4.28
158.177.128.27	158.140.180.125	155.4.61.15	153.232.29.168
5.227.65.17	5.125.73.250	151.143.254.233	220.164.226.212
221.240.13.200	213.107.241.177	246.87.36.136	30.122.16.139
220.134.126.57	76.229.110.36	45.5.248.194	26.139.70.61