61.64.2.134 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Taiwan, China

Internet Service Provider: TFN Media Co. Ltd.

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	SMB Server BruteForce Attack	2020-05-04 04:15:27

Comments on same subnet:

IP	Type	Details	Datetime
61.64.211.72	attackbotsspam	1596319659 - 08/02/2020 00:07:39 Host: 61.64.211.72/61.64.211.72 Port: 445 TCP Blocked	2020-08-02 08:24:30
61.64.208.103	attack	1590292590 - 05/24/2020 05:56:30 Host: 61.64.208.103/61.64.208.103 Port: 445 TCP Blocked	2020-05-24 12:03:02
61.64.20.62	attackbotsspam	unauthorized connection attempt	2020-01-12 20:52:55

Type

Details

Datetime

61.64.211.72

attackbotsspam

1596319659 - 08/02/2020 00:07:39 Host: 61.64.211.72/61.64.211.72 Port: 445 TCP Blocked

2020-08-02 08:24:30

61.64.208.103

attack

1590292590 - 05/24/2020 05:56:30 Host: 61.64.208.103/61.64.208.103 Port: 445 TCP Blocked

2020-05-24 12:03:02

61.64.20.62

attackbotsspam

unauthorized connection attempt

2020-01-12 20:52:55

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 61.64.2.134
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 65194
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;61.64.2.134.			IN	A

;; AUTHORITY SECTION:
.			444	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020050301 1800 900 604800 86400

;; Query time: 87 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon May 04 04:15:23 CST 2020
;; MSG SIZE  rcvd: 115

Host info

Host 134.2.64.61.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 134.2.64.61.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
157.230.30.23	attackbotsspam	Jul 23 16:47:06 yabzik sshd[6249]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.30.23 Jul 23 16:47:08 yabzik sshd[6249]: Failed password for invalid user zhao from 157.230.30.23 port 47900 ssh2 Jul 23 16:53:35 yabzik sshd[8197]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.30.23	2019-07-24 04:19:39
146.242.54.18	attack	ICMP MP Probe, Scan -	2019-07-24 03:37:14
51.77.146.136	attackbotsspam	Jul 23 21:35:20 * sshd[16736]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.77.146.136 Jul 23 21:35:22 * sshd[16736]: Failed password for invalid user cai from 51.77.146.136 port 51202 ssh2	2019-07-24 03:42:10
91.168.221.160	attackspambots	Automatic report - Port Scan Attack	2019-07-24 04:09:54
134.209.11.82	attack	Automatic report - Banned IP Access	2019-07-24 03:53:24
112.186.77.102	attackbotsspam	Automatic report - Banned IP Access	2019-07-24 04:10:17
146.242.36.18	attackbotsspam	ICMP MP Probe, Scan -	2019-07-24 03:55:55
107.172.155.218	attack	(From noreply@mycloudaccounting7938.pro) Hi, Are you searching for a cloud accounting product that makes operating your small business painless, fast and also secure? Automatize things like invoicing, preparing charges, tracking your time and effort not to mention following up with potential buyers in just a few clicks? Take a look at the online video : http://fastin.xyz/GBdBH and try it out free of cost during thirty days. All The Best, Jessika In no way looking into cloud accounting? We won't communicate with you once more : http://fastin.xyz/4z6oi Submit as unsolicited mail : http://fastin.xyz/EWdpf	2019-07-24 03:56:17
99.224.164.172	attack	2019-07-23T15:07:03.249766abusebot-7.cloudsearch.cf sshd\[16325\]: Invalid user internet from 99.224.164.172 port 51912	2019-07-24 03:38:29
213.59.155.225	attackspam	2019-07-23 04:06:31 H=(ip-213.59.155.225.lipetsk.zelenaya.net) [213.59.155.225]:58336 I=[192.147.25.65]:25 F= rejected RCPT : RBL: found in thrukfz5b56tq6xao6odgdyjrq.zen.dq.spamhaus.net (127.0.0.4, 127.0.0.3) (https://www.spamhaus.org/sbl/query/SBLCSS) 2019-07-23 04:06:31 H=(ip-213.59.155.225.lipetsk.zelenaya.net) [213.59.155.225]:58336 I=[192.147.25.65]:25 F= rejected RCPT : RBL: found in thrukfz5b56tq6xao6odgdyjrq.zen.dq.spamhaus.net (127.0.0.4, 127.0.0.3) (https://www.spamhaus.org/sbl/query/SBLCSS) 2019-07-23 04:06:31 H=(ip-213.59.155.225.lipetsk.zelenaya.net) [213.59.155.225]:58336 I=[192.147.25.65]:25 F= rejected RCPT : RBL: found in thrukfz5b56tq6xao6odgdyjrq.zen.dq.spamhaus.net (127.0.0.4, 127.0.0.3) (https://www.spamhaus.org/sbl/query/SBLCSS) ...	2019-07-24 04:13:18
34.65.251.163	attackbotsspam	WordPress brute force	2019-07-24 04:10:41
112.85.42.178	attackspam	Jul 23 21:23:48 Ubuntu-1404-trusty-64-minimal sshd\[23336\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.178 user=root Jul 23 21:23:49 Ubuntu-1404-trusty-64-minimal sshd\[23336\]: Failed password for root from 112.85.42.178 port 22314 ssh2 Jul 23 21:23:52 Ubuntu-1404-trusty-64-minimal sshd\[23336\]: Failed password for root from 112.85.42.178 port 22314 ssh2 Jul 23 21:23:55 Ubuntu-1404-trusty-64-minimal sshd\[23336\]: Failed password for root from 112.85.42.178 port 22314 ssh2 Jul 23 21:23:58 Ubuntu-1404-trusty-64-minimal sshd\[23336\]: Failed password for root from 112.85.42.178 port 22314 ssh2	2019-07-24 03:50:23
95.172.68.64	attackspambots	ICMP MP Probe, Scan -	2019-07-24 04:11:13
146.242.37.17	attackbotsspam	ICMP MP Probe, Scan -	2019-07-24 03:46:09
85.209.0.115	attack	Port scan on 18 port(s): 11139 21187 26660 26786 27299 30360 33684 34339 34951 41357 43526 43991 44681 48458 51373 56153 58838 59756	2019-07-24 04:00:21

Recently Reported IPs

218.25.171.125	37.187.18.95	149.202.75.199	118.24.72.100
46.99.139.71	187.134.163.223	186.50.144.240	52.200.80.202
3.87.46.206	110.158.243.255	20.185.239.81	134.209.157.167
104.199.35.65	214.11.98.121	2804:14d:5c5b:41bc:1ca2:ff9d:371f:6b74	129.205.167.59
53.219.175.163	194.44.96.61	124.41.243.22	201.242.122.160