220.142.54.130

Basic Info

City: unknown

Region: unknown

Country: Taiwan, China

Internet Service Provider: Chunghwa Telecom Co. Ltd.

Hostname: unknown

Organization: Data Communication Business Group

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspambots	TCP port 23 (Telnet) attempt blocked by firewall. [2019-06-30 15:14:09]	2019-07-01 04:26:51

Comments on same subnet:

IP	Type	Details	Datetime
220.142.54.247	attack	Fail2Ban Ban Triggered	2019-10-19 05:14:02
220.142.54.238	attack	2323/tcp 2323/tcp [2019-09-21/23]2pkt	2019-09-24 06:18:37

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 220.142.54.130
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 846
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;220.142.54.130.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019063001 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Mon Jul 01 04:26:45 CST 2019
;; MSG SIZE  rcvd: 118

Host info

130.54.142.220.in-addr.arpa domain name pointer 220-142-54-130.dynamic-ip.hinet.net.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
130.54.142.220.in-addr.arpa	name = 220-142-54-130.dynamic-ip.hinet.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
143.110.189.168	attackspambots	SCAN: Host Sweep CloudCIX Reconnaissance Scan Detected, PTR: 4-scan-andrew.foma-gmail.com.	2020-10-04 23:51:43
110.78.152.2	attack	23/tcp 8080/tcp [2020-10-01/02]2pkt	2020-10-04 23:20:49
122.194.229.54	attackspam	SSHD unauthorised connection attempt (a)	2020-10-04 23:21:55
103.129.95.34	attackbotsspam	139/tcp 445/tcp [2020-10-01]2pkt	2020-10-04 23:25:24
64.225.126.137	attack	Oct 4 13:04:21 s1 sshd\[30247\]: Failed password for invalid user rodrigo from 64.225.126.137 port 56734 ssh2 Oct 4 13:15:03 s1 sshd\[10799\]: User root from 64.225.126.137 not allowed because not listed in AllowUsers Oct 4 13:15:03 s1 sshd\[10799\]: Failed password for invalid user root from 64.225.126.137 port 50084 ssh2 Oct 4 13:18:44 s1 sshd\[15261\]: Invalid user alfresco from 64.225.126.137 port 57276 Oct 4 13:18:44 s1 sshd\[15261\]: Failed password for invalid user alfresco from 64.225.126.137 port 57276 ssh2 Oct 4 13:22:22 s1 sshd\[19836\]: Invalid user labuser from 64.225.126.137 port 36230 ...	2020-10-04 23:13:42
62.114.123.136	attackspam	Unauthorized connection attempt from IP address 62.114.123.136 on Port 445(SMB)	2020-10-04 23:38:58
36.110.111.51	attackspambots	SSH login attempts.	2020-10-04 23:44:35
35.204.152.99	attack	(mod_security) mod_security (id:5000135) triggered by 35.204.152.99 (NL/Netherlands/99.152.204.35.bc.googleusercontent.com): 5 in the last 14400 secs; ID: zul	2020-10-04 23:43:59
80.82.77.221	attackbots	TCP (SYN) 80.82.77.221:48346 -> port 1433, len 44	2020-10-04 23:10:25
165.227.170.117	attack	SCAN: Host Sweep CloudCIX Reconnaissance Scan Detected, PTR: PTR record not found	2020-10-04 23:42:17
114.27.91.105	attack	445/tcp 445/tcp [2020-10-03]2pkt	2020-10-04 23:42:47
51.15.243.117	attackbotsspam	2020-10-04T16:29:39.542073billing sshd[15292]: Failed password for invalid user weblogic from 51.15.243.117 port 57830 ssh2 2020-10-04T16:33:09.525912billing sshd[23005]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.15.243.117 user=root 2020-10-04T16:33:11.456063billing sshd[23005]: Failed password for root from 51.15.243.117 port 37880 ssh2 ...	2020-10-04 23:46:49
218.92.0.246	attack	2020-10-04T17:57:11.971706afi-git.jinr.ru sshd[18312]: Failed password for root from 218.92.0.246 port 13448 ssh2 2020-10-04T17:57:15.183389afi-git.jinr.ru sshd[18312]: Failed password for root from 218.92.0.246 port 13448 ssh2 2020-10-04T17:57:18.474301afi-git.jinr.ru sshd[18312]: Failed password for root from 218.92.0.246 port 13448 ssh2 2020-10-04T17:57:18.474469afi-git.jinr.ru sshd[18312]: error: maximum authentication attempts exceeded for root from 218.92.0.246 port 13448 ssh2 [preauth] 2020-10-04T17:57:18.474483afi-git.jinr.ru sshd[18312]: Disconnecting: Too many authentication failures [preauth] ...	2020-10-04 23:11:50
45.7.255.131	attackspambots	(sshd) Failed SSH login from 45.7.255.131 (AR/Argentina/-): 3 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Oct 3 16:39:46 internal2 sshd[26473]: Did not receive identification string from 45.7.255.131 port 51537 Oct 3 16:39:46 internal2 sshd[26474]: Did not receive identification string from 45.7.255.131 port 51548 Oct 3 16:39:46 internal2 sshd[26475]: Did not receive identification string from 45.7.255.131 port 51631	2020-10-04 23:14:42
69.162.120.69	attack	Connection Attempt(s) On Port 1433	2020-10-04 23:37:39

Recently Reported IPs

26.29.22.103	51.152.237.207	151.237.135.37	46.168.189.171
189.191.104.136	178.175.244.50	103.110.20.71	217.91.131.83
253.150.253.68	102.99.113.68	185.4.31.32	128.2.177.129
95.89.165.157	3.90.253.40	117.68.46.81	92.245.139.13
237.133.187.74	98.241.202.95	152.143.153.132	238.172.118.66