220.135.12.206

Basic Info

City: unknown

Region: unknown

Country: Taiwan, China

Internet Service Provider: Chunghwa Telecom Co. Ltd.

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspambots	Honeypot attack, port: 81, PTR: 220-135-12-206.HINET-IP.hinet.net.	2020-07-09 14:04:54

Comments on same subnet:

IP	Type	Details	Datetime
220.135.12.155	attackbots	TCP (SYN) 220.135.12.155:64224 -> port 23, len 44	2020-10-05 06:46:47
220.135.12.155	attackspambots	Found on CINS badguys / proto=6 . srcport=23489 . dstport=5555 . (2659)	2020-10-04 22:49:56
220.135.12.155	attack	23/tcp 23/tcp 23/tcp [2020-09-16/10-03]3pkt	2020-10-04 14:36:50
220.135.126.117	attackspambots	TCP (SYN) 220.135.126.117:8664 -> port 88, len 44	2020-07-12 16:20:29
220.135.128.133	attack	Unauthorised access (Jun 13) SRC=220.135.128.133 LEN=52 TTL=110 ID=5387 DF TCP DPT=445 WINDOW=8192 SYN	2020-06-13 15:56:02
220.135.128.117	attackspam	trying to access non-authorized port	2020-05-17 00:38:18
220.135.12.53	attack	unauthorized connection attempt	2020-01-28 13:05:19
220.135.120.122	attack	Dec 24 06:38:57 netserv400 sshd[20499]: Connection from 220.135.120.122 port 51162 on 94.102.210.190 port 22 Dec 24 06:39:44 netserv400 sshd[20508]: Connection from 220.135.120.122 port 33254 on 94.102.210.190 port 22 Dec 24 06:44:51 netserv400 sshd[20598]: Connection from 220.135.120.122 port 47776 on 94.102.210.190 port 22 Dec 24 06:45:39 netserv400 sshd[20637]: Connection from 220.135.120.122 port 57682 on 94.102.210.190 port 22 Dec 24 06:53:07 netserv400 sshd[20719]: Connection from 220.135.120.122 port 44310 on 94.102.210.190 port 22 Dec 24 06:53:54 netserv400 sshd[20722]: Connection from 220.135.120.122 port 54488 on 94.102.210.190 port 22 Dec 24 06:58:41 netserv400 sshd[20754]: Connection from 220.135.120.122 port 42310 on 94.102.210.190 port 22 Dec 24 06:59:30 netserv400 sshd[20761]: Connection from 220.135.120.122 port 52586 on 94.102.210.190 port 22 Dec 24 07:19:14 netserv400 sshd[21002]: Connection from 220.135.120.122 port 48284 on 94.102.210.190 port 22 Dec ........ ------------------------------	2019-12-29 07:46:43
220.135.120.122	attack	Dec 25 14:51:43 XXX sshd[53494]: Invalid user ftp1 from 220.135.120.122 port 56584	2019-12-25 23:06:43

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 220.135.12.206
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 53807
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;220.135.12.206.			IN	A

;; AUTHORITY SECTION:
.			562	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020070900 1800 900 604800 86400

;; Query time: 97 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Jul 09 14:04:50 CST 2020
;; MSG SIZE  rcvd: 118

Host info

206.12.135.220.in-addr.arpa domain name pointer 220-135-12-206.HINET-IP.hinet.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
206.12.135.220.in-addr.arpa	name = 220-135-12-206.HINET-IP.hinet.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
186.215.202.11	attackbots	Oct 9 23:42:38 php1 sshd\[11363\]: Invalid user 123 from 186.215.202.11 Oct 9 23:42:38 php1 sshd\[11363\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.215.202.11 Oct 9 23:42:40 php1 sshd\[11363\]: Failed password for invalid user 123 from 186.215.202.11 port 28650 ssh2 Oct 9 23:48:30 php1 sshd\[12013\]: Invalid user Ronald from 186.215.202.11 Oct 9 23:48:30 php1 sshd\[12013\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.215.202.11	2019-10-10 18:57:10
51.83.74.158	attackspam	Oct 10 12:21:31 server sshd\[20264\]: Invalid user Admin@002 from 51.83.74.158 port 54588 Oct 10 12:21:31 server sshd\[20264\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.83.74.158 Oct 10 12:21:33 server sshd\[20264\]: Failed password for invalid user Admin@002 from 51.83.74.158 port 54588 ssh2 Oct 10 12:25:04 server sshd\[13797\]: Invalid user Legal@123 from 51.83.74.158 port 46358 Oct 10 12:25:04 server sshd\[13797\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.83.74.158	2019-10-10 18:55:12
80.211.133.238	attackspam	Oct 10 07:01:16 vps691689 sshd[17114]: Failed password for root from 80.211.133.238 port 52084 ssh2 Oct 10 07:05:22 vps691689 sshd[17206]: Failed password for root from 80.211.133.238 port 35476 ssh2 ...	2019-10-10 18:47:22
185.36.81.243	attack	Rude login attack (19 tries in 1d)	2019-10-10 18:52:06
198.100.154.186	attackspambots	$f2bV_matches	2019-10-10 19:13:22
185.209.0.84	attackspam	10/10/2019-12:44:02.354663 185.209.0.84 Protocol: 6 ET DROP Dshield Block Listed Source group 1	2019-10-10 18:56:34
80.211.13.167	attackspam	Oct 10 06:47:35 MK-Soft-VM6 sshd[25919]: Failed password for root from 80.211.13.167 port 34676 ssh2 ...	2019-10-10 18:57:37
47.102.99.56	attack	404 NOT FOUND	2019-10-10 18:45:46
1.55.195.150	attackbots	Attempt to attack host OS, exploiting network vulnerabilities, on 10-10-2019 04:45:18.	2019-10-10 18:41:26
77.35.160.44	attack	Port 1433 Scan	2019-10-10 19:17:08
182.104.6.1	attackspam	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/182.104.6.1/ CN - 1H : (511) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : CN NAME ASN : ASN4134 IP : 182.104.6.1 CIDR : 182.104.0.0/15 PREFIX COUNT : 5430 UNIQUE IP COUNT : 106919680 WYKRYTE ATAKI Z ASN4134 : 1H - 10 3H - 35 6H - 63 12H - 111 24H - 225 DateTime : 2019-10-10 05:44:38 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery	2019-10-10 19:02:54
14.37.38.213	attack	Oct 9 22:09:07 friendsofhawaii sshd\[13632\]: Invalid user Root@123 from 14.37.38.213 Oct 9 22:09:07 friendsofhawaii sshd\[13632\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.37.38.213 Oct 9 22:09:09 friendsofhawaii sshd\[13632\]: Failed password for invalid user Root@123 from 14.37.38.213 port 47484 ssh2 Oct 9 22:13:56 friendsofhawaii sshd\[14019\]: Invalid user Bed@123 from 14.37.38.213 Oct 9 22:13:57 friendsofhawaii sshd\[14019\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.37.38.213	2019-10-10 18:51:06
66.146.164.62	attack	Port 1433 Scan	2019-10-10 19:18:06
95.67.14.65	attackspambots	Port 1433 Scan	2019-10-10 19:08:24
118.126.111.108	attackspam	SSH invalid-user multiple login try	2019-10-10 18:52:46

Recently Reported IPs

103.99.189.48	177.228.183.33	111.229.222.7	116.201.17.122
220.133.37.85	216.184.125.197	123.30.147.70	122.116.157.160
194.198.118.178	119.33.33.148	40.233.194.28	147.187.228.161
14.166.218.206	11.169.107.7	205.185.120.163	14.184.14.147
201.123.120.220	218.208.175.207	205.215.16.229	168.197.4.137