220.142.39.5 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Republic of China (ROC)

Internet Service Provider: Chunghwa Telecom Co. Ltd.

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Unauthorized connection attempt from IP address 220.142.39.5 on Port 445(SMB)	2019-08-17 08:05:04

Comments on same subnet:

IP	Type	Details	Datetime
220.142.39.247	attack	firewall-block, port(s): 23/tcp	2019-08-08 19:24:10

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 220.142.39.5
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 34030
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;220.142.39.5.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019081601 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sat Aug 17 08:04:59 CST 2019
;; MSG SIZE  rcvd: 116

Host info

5.39.142.220.in-addr.arpa domain name pointer 220-142-39-5.dynamic-ip.hinet.net.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
5.39.142.220.in-addr.arpa	name = 220-142-39-5.dynamic-ip.hinet.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
198.108.67.108	attackspam	ET DROP Dshield Block Listed Source group 1 - port: 777 proto: TCP cat: Misc Attack	2019-11-20 06:34:50
69.70.65.118	attackspam	SSH Brute Force, server-1 sshd[22391]: Failed password for www-data from 69.70.65.118 port 11844 ssh2	2019-11-20 06:54:39
27.70.153.187	attackbotsspam	Nov 19 23:23:22 dedicated sshd[23145]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.70.153.187 user=root Nov 19 23:23:24 dedicated sshd[23145]: Failed password for root from 27.70.153.187 port 30160 ssh2	2019-11-20 06:23:44
23.101.188.161	attackspam	19.11.2019 22:12:51 - RDP Login Fail Detected by https://www.elinox.de/RDP-Wächter	2019-11-20 06:46:37
106.75.132.222	attackspambots	3x Failed Password	2019-11-20 06:36:01
120.29.158.3	attack	2019-11-19T22:12:52.551257struts4.enskede.local sshd\[31831\]: Invalid user thuesen from 120.29.158.3 port 60128 2019-11-19T22:12:52.559993struts4.enskede.local sshd\[31831\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.29.158.3 2019-11-19T22:12:55.962461struts4.enskede.local sshd\[31831\]: Failed password for invalid user thuesen from 120.29.158.3 port 60128 ssh2 2019-11-19T22:16:43.291663struts4.enskede.local sshd\[31842\]: Invalid user info from 120.29.158.3 port 40706 2019-11-19T22:16:43.299442struts4.enskede.local sshd\[31842\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.29.158.3 ...	2019-11-20 06:24:28
111.231.59.116	attack	Nov 19 22:04:48 localhost sshd\[10426\]: Invalid user northrup from 111.231.59.116 port 52912 Nov 19 22:04:48 localhost sshd\[10426\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.59.116 Nov 19 22:04:50 localhost sshd\[10426\]: Failed password for invalid user northrup from 111.231.59.116 port 52912 ssh2 ...	2019-11-20 06:57:43
218.92.0.200	attack	Nov 19 22:23:44 venus sshd\[17485\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.200 user=root Nov 19 22:23:45 venus sshd\[17485\]: Failed password for root from 218.92.0.200 port 11190 ssh2 Nov 19 22:23:48 venus sshd\[17485\]: Failed password for root from 218.92.0.200 port 11190 ssh2 ...	2019-11-20 06:24:04
213.32.92.57	attack	2019-11-19T22:33:36.787525scmdmz1 sshd\[14492\]: Invalid user ruggieri from 213.32.92.57 port 34940 2019-11-19T22:33:36.790469scmdmz1 sshd\[14492\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ip57.ip-213-32-92.eu 2019-11-19T22:33:38.878041scmdmz1 sshd\[14492\]: Failed password for invalid user ruggieri from 213.32.92.57 port 34940 ssh2 ...	2019-11-20 06:36:18
62.234.68.246	attackspam	(sshd) Failed SSH login from 62.234.68.246 (-): 5 in the last 3600 secs	2019-11-20 06:23:03
106.12.86.205	attackspambots	Nov 19 19:12:58 ws12vmsma01 sshd[64384]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.86.205 Nov 19 19:12:58 ws12vmsma01 sshd[64384]: Invalid user test from 106.12.86.205 Nov 19 19:13:00 ws12vmsma01 sshd[64384]: Failed password for invalid user test from 106.12.86.205 port 35674 ssh2 ...	2019-11-20 06:40:19
182.71.108.154	attackbots	Nov 19 23:22:30 legacy sshd[1160]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.71.108.154 Nov 19 23:22:33 legacy sshd[1160]: Failed password for invalid user alexande from 182.71.108.154 port 47557 ssh2 Nov 19 23:26:59 legacy sshd[1265]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.71.108.154 ...	2019-11-20 06:48:36
49.236.192.74	attack	Nov 19 16:59:06 ny01 sshd[20332]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.236.192.74 Nov 19 16:59:08 ny01 sshd[20332]: Failed password for invalid user hgfdsa from 49.236.192.74 port 45000 ssh2 Nov 19 17:03:21 ny01 sshd[20706]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.236.192.74	2019-11-20 06:25:46
193.56.28.177	attack	Nov 19 23:26:16 vmd43113 postfix/smtpd\[7380\]: warning: unknown\[193.56.28.177\]: SASL LOGIN authentication failed: authentication failure Nov 19 23:26:16 vmd43113 postfix/smtpd\[7380\]: warning: unknown\[193.56.28.177\]: SASL LOGIN authentication failed: authentication failure Nov 19 23:26:17 vmd43113 postfix/smtpd\[7380\]: warning: unknown\[193.56.28.177\]: SASL LOGIN authentication failed: authentication failure Nov 19 23:26:17 vmd43113 postfix/smtpd\[7380\]: warning: unknown\[193.56.28.177\]: SASL LOGIN authentication failed: authentication failure Nov 19 23:26:17 vmd43113 postfix/smtpd\[7380\]: warning: unknown\[193.56.28.177\]: SASL LOGIN authentication failed: authentication failure	2019-11-20 06:51:13
145.239.88.184	attackbotsspam	2019-11-19T23:12:15.347646tmaserv sshd\[9368\]: Failed password for invalid user server from 145.239.88.184 port 59742 ssh2 2019-11-20T00:13:09.650950tmaserv sshd\[14710\]: Invalid user tech from 145.239.88.184 port 34788 2019-11-20T00:13:09.654244tmaserv sshd\[14710\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=184.ip-145-239-88.eu 2019-11-20T00:13:11.184373tmaserv sshd\[14710\]: Failed password for invalid user tech from 145.239.88.184 port 34788 ssh2 2019-11-20T00:16:48.667648tmaserv sshd\[15087\]: Invalid user rpm from 145.239.88.184 port 44944 2019-11-20T00:16:48.672176tmaserv sshd\[15087\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=184.ip-145-239-88.eu ...	2019-11-20 06:22:02

Recently Reported IPs

181.221.181.45	111.121.45.76	103.99.149.90	60.251.46.164
182.18.132.77	219.254.25.39	180.247.28.110	59.127.1.126
188.170.75.146	120.92.92.149	193.56.28.158	27.72.43.211
91.229.219.29	181.45.98.103	162.62.26.121	43.252.240.165
67.163.131.76	178.62.108.43	106.12.25.126	67.230.175.54