City: unknown
Region: unknown
Country: Taiwan, Province of China
Internet Service Provider: Chunghwa Telecom Co. Ltd.
Hostname: unknown
Organization: unknown
Usage Type: unknown
| Type | Details | Datetime |
|---|---|---|
| attackspam | Unauthorized connection attempt detected from IP address 220.134.50.38 to port 23 |
2020-02-19 21:36:08 |
| IP | Type | Details | Datetime |
|---|---|---|---|
| 220.134.50.97 | attackbots | unauthorized connection attempt |
2020-01-28 13:30:04 |
| 220.134.50.97 | attack | Unauthorized connection attempt detected from IP address 220.134.50.97 to port 4567 [J] |
2020-01-19 06:44:28 |
| 220.134.50.97 | attackbotsspam | unauthorized connection attempt |
2020-01-09 15:23:12 |
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 220.134.50.38
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 396
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;220.134.50.38. IN A
;; AUTHORITY SECTION:
. 545 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2020021900 1800 900 604800 86400
;; Query time: 34 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Feb 19 21:36:03 CST 2020
;; MSG SIZE rcvd: 11738.50.134.220.in-addr.arpa domain name pointer 220-134-50-38.HINET-IP.hinet.net.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
38.50.134.220.in-addr.arpa name = 220-134-50-38.HINET-IP.hinet.net.
Authoritative answers can be found from:| IP | Type | Details | Datetime |
|---|---|---|---|
| 211.234.122.227 | attackbotsspam | [SMB remote code execution attempt: port tcp/445] *(RWIN=1024)(08050931) |
2019-08-05 18:42:48 |
| 71.6.233.17 | attackbotsspam | Scanning random ports - tries to find possible vulnerable services |
2019-08-05 19:28:33 |
| 144.255.247.105 | attackspam | [portscan] tcp/23 [TELNET] *(RWIN=783)(08050931) |
2019-08-05 19:15:07 |
| 42.113.4.28 | attack | [SMB remote code execution attempt: port tcp/445] *(RWIN=8192)(08050931) |
2019-08-05 19:19:29 |
| 74.63.255.150 | attackbots | firewall-block, port(s): 445/tcp |
2019-08-05 19:05:19 |
| 34.77.26.158 | attack | : |
2019-08-05 18:52:33 |
| 93.115.241.194 | attack | Aug 5 08:52:58 vpn01 sshd\[20049\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.115.241.194 user=root Aug 5 08:53:00 vpn01 sshd\[20049\]: Failed password for root from 93.115.241.194 port 52096 ssh2 Aug 5 08:53:03 vpn01 sshd\[20051\]: Invalid user cirros from 93.115.241.194 |
2019-08-05 19:17:18 |
| 27.20.131.78 | attack | [portscan] tcp/23 [TELNET] *(RWIN=2416)(08050931) |
2019-08-05 19:08:10 |
| 182.148.122.18 | attackbots | [SMB remote code execution attempt: port tcp/445] *(RWIN=1024)(08050931) |
2019-08-05 19:13:23 |
| 198.101.15.92 | attackspambots | [SMB remote code execution attempt: port tcp/445] *(RWIN=1024)(08050931) |
2019-08-05 19:21:20 |
| 190.72.105.201 | attackbots | [portscan] tcp/23 [TELNET] *(RWIN=47889)(08050931) |
2019-08-05 19:12:49 |
| 78.111.97.3 | attack | [SMB remote code execution attempt: port tcp/445] *(RWIN=1024)(08050931) |
2019-08-05 19:27:41 |
| 35.195.6.14 | attack | [portscan] tcp/1433 [MsSQL] *(RWIN=65535)(08050931) |
2019-08-05 18:40:04 |
| 118.170.238.71 | attackspambots | [portscan] tcp/23 [TELNET] *(RWIN=62200)(08050931) |
2019-08-05 19:25:41 |
| 208.50.229.111 | attackspam | [SMB remote code execution attempt: port tcp/445] *(RWIN=8192)(08050931) |
2019-08-05 19:11:19 |