220.134.20.35 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Taiwan, China

Internet Service Provider: Chunghwa Telecom Co. Ltd.

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Unauthorized connection attempt detected from IP address 220.134.20.35 to port 23 [J]	2020-02-23 20:14:27

Comments on same subnet:

IP	Type	Details	Datetime
220.134.209.21	attack	SSH login attempts.	2020-08-23 03:10:55
220.134.201.251	attackbots	Honeypot attack, port: 81, PTR: 220-134-201-251.HINET-IP.hinet.net.	2020-07-15 04:49:06
220.134.206.170	attackbots	Port probing on unauthorized port 81	2020-07-13 19:40:47
220.134.201.138	attackbots	Honeypot attack, port: 81, PTR: 220-134-201-138.HINET-IP.hinet.net.	2020-06-04 07:33:21
220.134.204.122	attack	TCP (SYN) 220.134.204.122:29186 -> port 8080, len 40	2020-05-20 06:58:57
220.134.201.191	attackspam	Honeypot attack, port: 81, PTR: 220-134-201-191.HINET-IP.hinet.net.	2020-05-11 03:30:46
220.134.207.250	attack	unauthorized connection attempt	2020-02-26 13:01:03
220.134.206.223	attackspam	Unauthorized connection attempt detected from IP address 220.134.206.223 to port 23 [J]	2020-02-23 14:15:33
220.134.206.24	attackbots	Telnet/23 MH Probe, BF, Hack -	2020-02-13 23:43:52
220.134.209.126	attackspam	Aug 29 23:57:56 dallas01 sshd[22960]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.134.209.126 Aug 29 23:57:57 dallas01 sshd[22960]: Failed password for invalid user nico from 220.134.209.126 port 37548 ssh2 Aug 30 00:02:38 dallas01 sshd[24653]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.134.209.126 Aug 30 00:02:40 dallas01 sshd[24653]: Failed password for invalid user ppb from 220.134.209.126 port 27188 ssh2	2019-10-08 23:31:30
220.134.209.97	attack	firewall-block, port(s): 34567/tcp	2019-10-01 03:24:32
220.134.209.126	attack	Invalid user t from 220.134.209.126 port 38382	2019-08-25 09:27:38
220.134.209.126	attackspam	Aug 21 12:10:33 h2177944 sshd\[22156\]: Invalid user klind from 220.134.209.126 port 17644 Aug 21 12:10:33 h2177944 sshd\[22156\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.134.209.126 Aug 21 12:10:34 h2177944 sshd\[22156\]: Failed password for invalid user klind from 220.134.209.126 port 17644 ssh2 Aug 21 12:15:09 h2177944 sshd\[22239\]: Invalid user usuario from 220.134.209.126 port 62796 Aug 21 12:15:09 h2177944 sshd\[22239\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.134.209.126 ...	2019-08-21 19:01:12
220.134.209.126	attack	Aug 20 10:49:05 vps200512 sshd\[10070\]: Invalid user spyware from 220.134.209.126 Aug 20 10:49:05 vps200512 sshd\[10070\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.134.209.126 Aug 20 10:49:07 vps200512 sshd\[10070\]: Failed password for invalid user spyware from 220.134.209.126 port 48630 ssh2 Aug 20 10:53:49 vps200512 sshd\[10159\]: Invalid user dorina from 220.134.209.126 Aug 20 10:53:49 vps200512 sshd\[10159\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.134.209.126	2019-08-20 23:09:19
220.134.209.126	attackspam	Jul 29 00:58:02 uapps sshd[23819]: User r.r from 220-134-209-126.hinet-ip.hinet.net not allowed because not listed in AllowUsers Jul 29 00:58:02 uapps sshd[23819]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=220-134-209-126.hinet-ip.hinet.net user=r.r Jul 29 00:58:05 uapps sshd[23819]: Failed password for invalid user r.r from 220.134.209.126 port 63122 ssh2 Jul 29 00:58:05 uapps sshd[23819]: Received disconnect from 220.134.209.126: 11: Bye Bye [preauth] Jul 29 04:35:59 uapps sshd[6662]: User r.r from 220-134-209-126.hinet-ip.hinet.net not allowed because not listed in AllowUsers Jul 29 04:35:59 uapps sshd[6662]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=220-134-209-126.hinet-ip.hinet.net user=r.r Jul 29 04:36:01 uapps sshd[6662]: Failed password for invalid user r.r from 220.134.209.126 port 55970 ssh2 Jul 29 04:36:01 uapps sshd[6662]: Received disconnect from 220.134.209.126: ........ -------------------------------	2019-08-01 15:23:41

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 220.134.20.35
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 57541
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;220.134.20.35.			IN	A

;; AUTHORITY SECTION:
.			278	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020022300 1800 900 604800 86400

;; Query time: 105 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 23 20:14:21 CST 2020
;; MSG SIZE  rcvd: 117

Host info

35.20.134.220.in-addr.arpa domain name pointer 220-134-20-35.HINET-IP.hinet.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
35.20.134.220.in-addr.arpa	name = 220-134-20-35.HINET-IP.hinet.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
50.67.178.164	attackspambots	suspicious action Mon, 24 Feb 2020 01:55:47 -0300	2020-02-24 14:45:01
118.25.75.59	attackspam	ssh brute force	2020-02-24 14:47:28
14.162.151.171	attack	Attempt to attack host OS, exploiting network vulnerabilities, on 24-02-2020 04:55:17.	2020-02-24 15:05:40
88.129.208.50	attack	suspicious action Mon, 24 Feb 2020 01:56:15 -0300	2020-02-24 14:34:38
104.136.25.125	attack	Port Scan detected from 104.136.25.125 (US/United States/104-136-25-125.res.bhn.net). 4 hits in the last 210 seconds	2020-02-24 15:16:43
222.186.173.226	attack	Feb 24 09:23:29 hosting sshd[2946]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.173.226 user=root Feb 24 09:23:31 hosting sshd[2946]: Failed password for root from 222.186.173.226 port 43707 ssh2 ...	2020-02-24 14:43:52
138.185.201.205	attackbotsspam	Automatic report - Port Scan Attack	2020-02-24 14:38:37
125.17.116.70	attack	Attempt to attack host OS, exploiting network vulnerabilities, on 24-02-2020 04:55:17.	2020-02-24 15:06:54
95.130.9.90	attackbots	suspicious action Mon, 24 Feb 2020 01:56:21 -0300	2020-02-24 14:33:24
218.250.85.46	attackspambots	" "	2020-02-24 14:40:45
180.254.106.69	attackspam	Unauthorized connection attempt detected from IP address 180.254.106.69 to port 445	2020-02-24 14:34:14
118.71.191.156	attack	Attempt to attack host OS, exploiting network vulnerabilities, on 24-02-2020 04:55:15.	2020-02-24 15:08:18
61.230.76.212	attack	Attempt to attack host OS, exploiting network vulnerabilities, on 24-02-2020 04:55:25.	2020-02-24 14:51:38
14.183.169.46	attack	Attempt to attack host OS, exploiting network vulnerabilities, on 24-02-2020 04:55:18.	2020-02-24 15:03:40
36.68.172.56	attackspam	Attempt to attack host OS, exploiting network vulnerabilities, on 24-02-2020 04:55:22.	2020-02-24 14:55:32

Recently Reported IPs

150.107.188.42	125.227.109.226	123.12.54.231	121.144.71.40
116.72.156.38	115.75.163.95	115.28.243.30	55.217.81.14
114.35.149.165	199.115.43.17	100.165.43.52	3.254.143.248
186.79.192.86	114.24.192.159	251.81.127.4	110.235.210.152
109.194.204.5	106.105.141.239	103.96.51.25	102.132.225.78