1.34.150.7 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Taiwan, China

Internet Service Provider: Chunghwa Telecom Co. Ltd.

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	Port probing on unauthorized port 85	2020-05-12 21:31:29

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 1.34.150.7
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 54673
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;1.34.150.7.			IN	A

;; AUTHORITY SECTION:
.			139	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020051200 1800 900 604800 86400

;; Query time: 108 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue May 12 21:31:17 CST 2020
;; MSG SIZE  rcvd: 114

Host info

7.150.34.1.in-addr.arpa domain name pointer 1-34-150-7.HINET-IP.hinet.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
7.150.34.1.in-addr.arpa	name = 1-34-150-7.HINET-IP.hinet.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
198.108.66.112	attackspambots	port scan and connect, tcp 22 (ssh)	2020-03-03 15:51:39
145.239.95.83	attackspam	Mar 3 08:41:00 vpn01 sshd[23778]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=145.239.95.83 Mar 3 08:41:03 vpn01 sshd[23778]: Failed password for invalid user node from 145.239.95.83 port 36970 ssh2 ...	2020-03-03 15:41:06
201.211.164.28	attack	Honeypot attack, port: 445, PTR: 201-211-164-28.genericrev.cantv.net.	2020-03-03 15:38:00
134.249.124.230	attackspambots	Mar 3 09:02:36 sshd\[1610\]: Invalid user usuario from 134.249.124.230Mar 3 09:02:38 sshd\[1610\]: Failed password for invalid user usuario from 134.249.124.230 port 34610 ssh2 ...	2020-03-03 16:06:52
49.233.174.48	attack	Mar 3 05:55:37 163-172-32-151 sshd[15798]: Invalid user steamcmd from 49.233.174.48 port 49764 ...	2020-03-03 16:07:42
141.8.189.8	attackbots	[Tue Mar 03 14:34:21.703910 2020] [:error] [pid 1071:tid 140483236628224] [client 141.8.189.8:50487] [client 141.8.189.8] ModSecurity: Access denied with code 403 (phase 2). Pattern match "^[\\\\d.:]+$" at REQUEST_HEADERS:Host. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "696"] [id "920350"] [msg "Host header is a numeric IP address"] [data "103.27.207.197"] [severity "WARNING"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/IP_HOST"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A7"] [tag "PCI/6.5.10"] [hostname "103.27.207.197"] [uri "/"] [unique_id "Xl4IfY-zF-aCRwl-qru4jgAAARc"] ...	2020-03-03 15:46:26
45.146.203.84	attack	Mar 3 05:54:45 web01 postfix/smtpd[5215]: connect from gabby.nabzezan.com[45.146.203.84] Mar 3 05:54:45 web01 policyd-spf[5550]: None; identhostnamey=helo; client-ip=45.146.203.84; helo=gabby.ipsabt.com; envelope-from=x@x Mar 3 05:54:45 web01 policyd-spf[5550]: None; identhostnamey=mailfrom; client-ip=45.146.203.84; helo=gabby.ipsabt.com; envelope-from=x@x Mar x@x Mar 3 05:54:45 web01 postfix/smtpd[5215]: disconnect from gabby.nabzezan.com[45.146.203.84] Mar 3 05:54:55 web01 postfix/smtpd[5794]: connect from gabby.nabzezan.com[45.146.203.84] Mar 3 05:54:55 web01 policyd-spf[5798]: None; identhostnamey=helo; client-ip=45.146.203.84; helo=gabby.ipsabt.com; envelope-from=x@x Mar 3 05:54:55 web01 policyd-spf[5798]: None; identhostnamey=mailfrom; client-ip=45.146.203.84; helo=gabby.ipsabt.com; envelope-from=x@x Mar x@x Mar 3 05:54:55 web01 postfix/smtpd[5794]: disconnect from gabby.nabzezan.com[45.146.203.84] Mar 3 05:56:02 web01 postfix/smtpd[5215]: connect from ga........ -------------------------------	2020-03-03 16:10:23
223.16.203.201	attack	Honeypot attack, port: 5555, PTR: 201-203-16-223-on-nets.com.	2020-03-03 16:04:41
157.245.74.244	attackbotsspam	Automatic report - XMLRPC Attack	2020-03-03 15:54:24
69.119.140.197	attackspambots	Honeypot attack, port: 81, PTR: ool-45778cc5.dyn.optonline.net.	2020-03-03 16:00:31
45.80.65.122	attackspambots	Mar 3 05:55:23 163-172-32-151 sshd[15716]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.80.65.122 user=root Mar 3 05:55:25 163-172-32-151 sshd[15716]: Failed password for root from 45.80.65.122 port 46240 ssh2 ...	2020-03-03 16:15:24
222.186.173.183	attack	Mar 3 08:27:18 dedicated sshd[13347]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.173.183 user=root Mar 3 08:27:20 dedicated sshd[13347]: Failed password for root from 222.186.173.183 port 65504 ssh2	2020-03-03 15:38:59
109.235.107.79	attackspam	Automatic report - Port Scan Attack	2020-03-03 15:45:02
209.17.96.250	attack	Unauthorised access (Mar 3) SRC=209.17.96.250 LEN=44 TOS=0x08 PREC=0x20 TTL=243 ID=54321 TCP DPT=8080 WINDOW=65535 SYN	2020-03-03 15:37:01
49.207.12.162	attackspambots	Honeypot attack, port: 445, PTR: broadband.actcorp.in.	2020-03-03 15:57:23

Recently Reported IPs

31.2.196.57	162.158.187.140	125.161.105.129	121.184.54.158
103.217.123.34	103.216.216.64	7.40.170.5	36.72.30.86
221.231.126.238	221.163.252.227	220.86.162.163	213.76.57.231
211.225.149.222	210.222.211.170	202.115.253.139	201.220.182.144
197.44.150.198	194.208.63.206	190.205.185.198	190.96.135.3