220.135.85.244

Basic Info

City: unknown

Region: unknown

Country: Taiwan, Province of China

Internet Service Provider: Chunghwa Telecom Co. Ltd.

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbotsspam	Unauthorized connection attempt detected from IP address 220.135.85.244 to port 4567 [J]	2020-02-01 16:00:24
attackbots	Unauthorized connection attempt detected from IP address 220.135.85.244 to port 4567 [J]	2020-01-22 23:16:03

Comments on same subnet:

IP	Type	Details	Datetime
220.135.85.53	attackbotsspam	TCP (SYN) 220.135.85.53:64956 -> port 23, len 40	2020-05-20 05:31:46
220.135.85.166	attackbotsspam	23/tcp 23/tcp 23/tcp... [2020-02-28/03-23]4pkt,1pt.(tcp)	2020-03-23 18:11:21
220.135.85.166	attackspambots	Port probing on unauthorized port 23	2020-02-29 21:15:52

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 220.135.85.244
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 15760
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;220.135.85.244.			IN	A

;; AUTHORITY SECTION:
.			290	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020012200 1800 900 604800 86400

;; Query time: 51 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Jan 22 23:15:57 CST 2020
;; MSG SIZE  rcvd: 118

Host info

244.85.135.220.in-addr.arpa domain name pointer 220-135-85-244.HINET-IP.hinet.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
244.85.135.220.in-addr.arpa	name = 220-135-85-244.HINET-IP.hinet.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
189.219.123.109	attackbotsspam	Port scan on 2 port(s): 22 8291	2020-05-15 08:01:49
106.13.68.101	attack	May 15 00:54:10 lukav-desktop sshd\[1684\]: Invalid user fofserver from 106.13.68.101 May 15 00:54:10 lukav-desktop sshd\[1684\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.68.101 May 15 00:54:12 lukav-desktop sshd\[1684\]: Failed password for invalid user fofserver from 106.13.68.101 port 54461 ssh2 May 15 00:57:07 lukav-desktop sshd\[1710\]: Invalid user adam from 106.13.68.101 May 15 00:57:07 lukav-desktop sshd\[1710\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.68.101	2020-05-15 08:33:21
104.46.36.244	attackbots	k+ssh-bruteforce	2020-05-15 08:26:34
217.182.70.150	attack	SSH Invalid Login	2020-05-15 08:10:25
193.227.50.6	attack	Unauthorised access (May 14) SRC=193.227.50.6 LEN=52 TTL=111 ID=12470 DF TCP DPT=445 WINDOW=8192 SYN	2020-05-15 07:58:52
180.66.207.67	attackbotsspam	(sshd) Failed SSH login from 180.66.207.67 (KR/South Korea/-): 5 in the last 3600 secs	2020-05-15 08:13:35
198.108.66.228	attack	May 15 00:43:29 debian-2gb-nbg1-2 kernel: \[11755060.650895\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=198.108.66.228 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=34 ID=62181 PROTO=TCP SPT=34633 DPT=12427 WINDOW=1024 RES=0x00 SYN URGP=0	2020-05-15 08:03:46
122.152.217.9	attack	SSH Bruteforce attack	2020-05-15 08:07:24
103.138.188.45	attack	103.138.188.45 - - [14/May/2020:22:52:20 +0200] "GET /wp-login.php HTTP/1.1" 200 1900 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 103.138.188.45 - - [14/May/2020:22:52:22 +0200] "POST /wp-login.php HTTP/1.1" 200 2031 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 103.138.188.45 - - [14/May/2020:22:52:22 +0200] "GET /wp-login.php HTTP/1.1" 200 1900 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 103.138.188.45 - - [14/May/2020:22:52:24 +0200] "POST /wp-login.php HTTP/1.1" 200 2008 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 103.138.188.45 - - [14/May/2020:22:52:24 +0200] "GET /wp-login.php HTTP/1.1" 200 1900 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 103.138.188.45 - - [14/May/2020:22:52:25 +0200] "POST /wp-login.php HTTP/1.1" 200 2009 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/201001 ...	2020-05-15 08:28:05
118.25.49.119	attack	Invalid user gmf from 118.25.49.119 port 53890	2020-05-15 07:55:16
139.199.229.228	attackspam	May 15 01:11:35 lukav-desktop sshd\[12097\]: Invalid user postgres from 139.199.229.228 May 15 01:11:35 lukav-desktop sshd\[12097\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.229.228 May 15 01:11:37 lukav-desktop sshd\[12097\]: Failed password for invalid user postgres from 139.199.229.228 port 44204 ssh2 May 15 01:15:21 lukav-desktop sshd\[12152\]: Invalid user tests from 139.199.229.228 May 15 01:15:21 lukav-desktop sshd\[12152\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.229.228	2020-05-15 08:21:14
218.94.125.246	attack	May 14 20:27:06 mail sshd\[12886\]: Invalid user uupc from 218.94.125.246 May 14 20:27:06 mail sshd\[12886\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.94.125.246 ...	2020-05-15 08:30:10
121.229.14.66	attack	(sshd) Failed SSH login from 121.229.14.66 (CN/China/66.14.229.121.broad.nj.js.dynamic.163data.com.cn): 5 in the last 3600 secs	2020-05-15 08:34:40
49.235.216.107	attack	Found by fail2ban	2020-05-15 08:23:01
49.235.104.204	attackspam	May 15 06:53:44 webhost01 sshd[21170]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.104.204 May 15 06:53:46 webhost01 sshd[21170]: Failed password for invalid user il from 49.235.104.204 port 53842 ssh2 ...	2020-05-15 08:25:15

Recently Reported IPs

66.166.60.190	154.79.250.108	86.66.108.4	154.138.64.0
123.109.100.146	248.112.176.230	122.116.167.31	118.168.7.90
118.89.168.132	118.71.13.247	114.33.188.183	113.236.80.53
103.143.46.105	102.165.126.2	99.252.164.74	93.138.29.85
93.99.49.50	92.101.119.224	85.204.116.209	83.147.212.232