220.134.22.203

Basic Info

City: unknown

Region: unknown

Country: Taiwan, China

Internet Service Provider: Chunghwa Telecom Co. Ltd.

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	220.134.22.203 - - [07/Jul/2020:03:54:06 +0000] "GET / HTTP/1.1" 400 166 "-" "-"	2020-07-07 14:40:54

Comments on same subnet:

IP	Type	Details	Datetime
220.134.223.249	attack	Tried our host z.	2020-09-27 00:55:50
220.134.223.249	attackspambots	Found on CINS badguys / proto=6 . srcport=3810 . dstport=5555 . (3536)	2020-09-26 16:46:13
220.134.224.75	attack	IP 220.134.224.75 attacked honeypot on port: 23 at 8/3/2020 1:34:47 PM	2020-08-04 06:24:50
220.134.225.137	attackspambots	Attempted connection to port 23.	2020-08-01 16:56:54
220.134.223.21	attackbotsspam	IP 220.134.223.21 attacked honeypot on port: 80 at 7/5/2020 8:53:20 PM	2020-07-06 13:49:06
220.134.220.129	attackspam	Port probing on unauthorized port 88	2020-06-07 07:20:51
220.134.220.58	attackbotsspam	Honeypot attack, port: 81, PTR: 220-134-220-58.HINET-IP.hinet.net.	2020-04-24 05:07:03
220.134.229.217	attack	" "	2020-04-07 17:35:18
220.134.229.221	attackbotsspam	firewall-block, port(s): 23/tcp	2020-02-20 17:01:12
220.134.222.190	attackbotsspam	" "	2020-02-12 17:25:02
220.134.229.217	attack	Unauthorized connection attempt detected from IP address 220.134.229.217 to port 4567 [J]	2020-01-25 20:39:46
220.134.22.113	attackspam	Automatic report - Web App Attack	2019-07-08 08:41:29
220.134.226.171	attackbots	23/tcp [2019-07-03]1pkt	2019-07-03 16:44:26
220.134.222.140	attackbots	81/tcp [2019-07-02]1pkt	2019-07-02 19:36:32

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 220.134.22.203
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 24988
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;220.134.22.203.			IN	A

;; AUTHORITY SECTION:
.			202	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020070700 1800 900 604800 86400

;; Query time: 96 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Jul 07 14:40:51 CST 2020
;; MSG SIZE  rcvd: 118

Host info

203.22.134.220.in-addr.arpa domain name pointer 220-134-22-203.HINET-IP.hinet.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
203.22.134.220.in-addr.arpa	name = 220-134-22-203.HINET-IP.hinet.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
106.13.147.69	attack	Aug 1 04:45:03 xtremcommunity sshd\[32031\]: Invalid user andymal from 106.13.147.69 port 56372 Aug 1 04:45:03 xtremcommunity sshd\[32031\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.147.69 Aug 1 04:45:04 xtremcommunity sshd\[32031\]: Failed password for invalid user andymal from 106.13.147.69 port 56372 ssh2 Aug 1 04:50:22 xtremcommunity sshd\[7301\]: Invalid user bird from 106.13.147.69 port 45164 Aug 1 04:50:22 xtremcommunity sshd\[7301\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.147.69 ...	2019-08-01 17:05:05
118.24.3.193	attackspambots	Aug 1 04:37:04 xb3 sshd[20790]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.3.193 user=r.r Aug 1 04:37:06 xb3 sshd[20790]: Failed password for r.r from 118.24.3.193 port 39151 ssh2 Aug 1 04:37:06 xb3 sshd[20790]: Received disconnect from 118.24.3.193: 11: Bye Bye [preauth] Aug 1 05:23:11 xb3 sshd[7835]: Failed password for invalid user bruno from 118.24.3.193 port 52120 ssh2 Aug 1 05:23:11 xb3 sshd[7835]: Received disconnect from 118.24.3.193: 11: Bye Bye [preauth] Aug 1 05:27:00 xb3 sshd[3763]: Failed password for invalid user edward from 118.24.3.193 port 41211 ssh2 Aug 1 05:27:00 xb3 sshd[3763]: Received disconnect from 118.24.3.193: 11: Bye Bye [preauth] Aug 1 05:30:39 xb3 sshd[32153]: Failed password for invalid user user1 from 118.24.3.193 port 58624 ssh2 Aug 1 05:30:39 xb3 sshd[32153]: Received disconnect from 118.24.3.193: 11: Bye Bye [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?i	2019-08-01 17:10:38
122.228.19.79	attack	Scanning (more than 2 packets) random ports - tries to find possible vulnerable services	2019-08-01 17:20:47
142.93.58.123	attackspambots	2019-08-01T05:26:33.780172abusebot-8.cloudsearch.cf sshd\[16483\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.58.123 user=root	2019-08-01 17:24:56
218.92.0.154	attackspambots	SSH-bruteforce attempts	2019-08-01 16:55:35
194.96.178.188	attack	Port Scan detected from 194.96.178.188 (AT/Austria/194-96-178-188.adsl.highway.telekom.at). 4 hits in the last 75 seconds	2019-08-01 17:36:34
37.236.158.58	attackspambots	Jul 31 23:25:50 web1 postfix/smtpd[31032]: warning: unknown[37.236.158.58]: SASL PLAIN authentication failed: authentication failure ...	2019-08-01 17:12:16
50.251.172.145	attackspam	Invalid user sage from 50.251.172.145 port 47904	2019-08-01 17:14:11
145.239.82.192	attack	SSH Bruteforce @ SigaVPN honeypot	2019-08-01 17:40:50
119.109.23.84	attackbotsspam	Automatic report - Port Scan Attack	2019-08-01 17:20:02
95.48.54.106	attack	Apr 21 16:35:18 ubuntu sshd[8482]: Failed password for invalid user development from 95.48.54.106 port 39480 ssh2 Apr 21 16:37:40 ubuntu sshd[8568]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.48.54.106 Apr 21 16:37:43 ubuntu sshd[8568]: Failed password for invalid user xl from 95.48.54.106 port 36722 ssh2	2019-08-01 17:04:17
206.189.155.139	attack	Aug 1 10:56:03 tux-35-217 sshd\[12504\]: Invalid user mysql from 206.189.155.139 port 46936 Aug 1 10:56:03 tux-35-217 sshd\[12504\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.155.139 Aug 1 10:56:05 tux-35-217 sshd\[12504\]: Failed password for invalid user mysql from 206.189.155.139 port 46936 ssh2 Aug 1 11:01:05 tux-35-217 sshd\[12517\]: Invalid user tomcat from 206.189.155.139 port 44294 Aug 1 11:01:05 tux-35-217 sshd\[12517\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.155.139 ...	2019-08-01 17:51:55
60.184.177.10	attackbotsspam	Aug 1 05:22:12 mail sshd\[20406\]: Invalid user pi from 60.184.177.10 Aug 1 05:22:41 mail sshd\[20449\]: Invalid user pi from 60.184.177.10 Aug 1 05:23:17 mail sshd\[20482\]: Invalid user pi from 60.184.177.10 Aug 1 05:23:58 mail sshd\[20513\]: Invalid user ubnt from 60.184.177.10 Aug 1 05:24:42 mail sshd\[20524\]: Invalid user nexthink from 60.184.177.10 ...	2019-08-01 17:51:13
79.137.79.167	attackbots	Aug 01 02:23:39 askasleikir sshd[15925]: Failed password for root from 79.137.79.167 port 63077 ssh2	2019-08-01 17:28:29
104.248.7.24	attackspambots	Aug 1 10:49:56 localhost sshd\[13203\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.7.24 user=root Aug 1 10:49:58 localhost sshd\[13203\]: Failed password for root from 104.248.7.24 port 40760 ssh2 Aug 1 10:54:13 localhost sshd\[13773\]: Invalid user watson from 104.248.7.24 port 35928	2019-08-01 17:02:22

Recently Reported IPs

35.196.12.30	220.132.141.125	117.187.129.40	223.16.56.240
125.166.118.212	125.215.92.255	125.165.193.61	177.11.167.232
76.172.166.52	214.129.166.2	31.58.254.169	129.168.50.17
137.129.183.103	248.32.137.142	160.145.138.177	27.2.73.133
42.115.184.120	87.209.16.225	195.108.207.67	123.212.229.236