50.139.235.205

基本信息:

城市(city): Manhattan

省份(region): New York

国家(country): United States

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 50.139.235.205
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 21611
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;50.139.235.205.			IN	A

;; AUTHORITY SECTION:
.			594	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019110301 1800 900 604800 86400

;; Query time: 108 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Nov 04 07:08:12 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

205.235.139.50.in-addr.arpa domain name pointer c-50-139-235-205.hsd1.fl.comcast.net.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
205.235.139.50.in-addr.arpa	name = c-50-139-235-205.hsd1.fl.comcast.net.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
87.190.16.229	attack	Time: Fri Sep 4 04:24:59 2020 +0000 IP: 87.190.16.229 (DE/Germany/-) Failures: 5 (sshd) Interval: 3600 seconds Blocked: Permanent Block [LF_SSHD] Log entries: Sep 4 04:16:29 ca-1-ams1 sshd[12516]: Invalid user user from 87.190.16.229 port 44734 Sep 4 04:16:31 ca-1-ams1 sshd[12516]: Failed password for invalid user user from 87.190.16.229 port 44734 ssh2 Sep 4 04:21:46 ca-1-ams1 sshd[12735]: Invalid user tangyong from 87.190.16.229 port 42024 Sep 4 04:21:48 ca-1-ams1 sshd[12735]: Failed password for invalid user tangyong from 87.190.16.229 port 42024 ssh2 Sep 4 04:24:56 ca-1-ams1 sshd[12921]: Invalid user norma from 87.190.16.229 port 47254	2020-09-04 12:54:27
51.195.7.14	attackbotsspam	[2020-09-03 17:43:58] NOTICE[1194] chan_sip.c: Registration from '' failed for '51.195.7.14:56171' - Wrong password [2020-09-03 17:43:58] SECURITY[1233] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-09-03T17:43:58.317-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="6270",SessionID="0x7f2ddc0bf9a8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/51.195.7.14/56171",Challenge="6e0b9e4d",ReceivedChallenge="6e0b9e4d",ReceivedHash="2cda66bde223f0c4242f1a71784eb326" [2020-09-03 17:44:11] NOTICE[1194] chan_sip.c: Registration from '' failed for '51.195.7.14:54259' - Wrong password [2020-09-03 17:44:11] SECURITY[1233] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-09-03T17:44:11.122-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="6275",SessionID="0x7f2ddc0e4da8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/51.195.7.14/54259", ...	2020-09-04 13:09:39
167.248.133.25	attackbots	TCP (SYN) 167.248.133.25:10047 -> port 465, len 44	2020-09-04 12:50:18
51.255.172.77	attackspambots	Sep 4 03:17:45 vps639187 sshd\[18797\]: Invalid user hadoop from 51.255.172.77 port 52650 Sep 4 03:17:45 vps639187 sshd\[18797\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.255.172.77 Sep 4 03:17:48 vps639187 sshd\[18797\]: Failed password for invalid user hadoop from 51.255.172.77 port 52650 ssh2 ...	2020-09-04 13:04:09
184.105.247.195	attackbots	srvr2: (mod_security) mod_security (id:920350) triggered by 184.105.247.195 (US/-/scan-14.shadowserver.org): 1 in the last 600 secs; Ports: ; Direction: inout; Trigger: LF_MODSEC; Logs: 2020/09/04 03:57:10 [error] 929644#0: 774441 [client 184.105.247.195] ModSecurity: Access denied with code 406 (phase 2). Matched "Operator `Rx' with parameter `^[\d.:]+$' against variable `REQUEST_HEADERS:Host' [redacted] [file "/etc/modsecurity.d/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "718"] [id "920350"] [rev ""] [msg "Host header is a numeric IP address"] [redacted] [severity "4"] [ver "OWASP_CRS/3.3.0"] [maturity "0"] [accuracy "0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/210/272"] [tag "PCI/6.5.10"] [redacted] [uri "/"] [unique_id "159918463073.157171"] [ref "o0,12v21,12"], client: 184.105.247.195, [redacted] request: "GET / HTTP/1.1" [redacted]	2020-09-04 12:49:49
180.76.175.164	attackspam	Sep 4 00:29:05 PorscheCustomer sshd[2270]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.175.164 Sep 4 00:29:06 PorscheCustomer sshd[2270]: Failed password for invalid user guest from 180.76.175.164 port 33178 ssh2 Sep 4 00:37:16 PorscheCustomer sshd[2474]: Failed password for root from 180.76.175.164 port 34628 ssh2 ...	2020-09-04 13:12:06
185.216.140.240	attackspam	UDP 185.216.140.240:29491 -> port 389, len 79	2020-09-04 12:54:53
192.241.220.50	attackspam	8983/tcp 8080/tcp 8140/tcp... [2020-07-04/09-04]12pkt,10pt.(tcp),2pt.(udp)	2020-09-04 12:44:59
218.92.0.165	attack	Sep 4 07:11:35 inter-technics sshd[5561]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.165 user=root Sep 4 07:11:37 inter-technics sshd[5561]: Failed password for root from 218.92.0.165 port 28534 ssh2 Sep 4 07:11:41 inter-technics sshd[5561]: Failed password for root from 218.92.0.165 port 28534 ssh2 Sep 4 07:11:35 inter-technics sshd[5561]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.165 user=root Sep 4 07:11:37 inter-technics sshd[5561]: Failed password for root from 218.92.0.165 port 28534 ssh2 Sep 4 07:11:41 inter-technics sshd[5561]: Failed password for root from 218.92.0.165 port 28534 ssh2 Sep 4 07:11:35 inter-technics sshd[5561]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.165 user=root Sep 4 07:11:37 inter-technics sshd[5561]: Failed password for root from 218.92.0.165 port 28534 ssh2 Sep 4 07:11:41 inter-tec ...	2020-09-04 13:13:59
113.72.16.195	attackspambots	Sep 4 04:03:54 vps639187 sshd\[19320\]: Invalid user git from 113.72.16.195 port 33121 Sep 4 04:03:54 vps639187 sshd\[19320\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.72.16.195 Sep 4 04:03:55 vps639187 sshd\[19320\]: Failed password for invalid user git from 113.72.16.195 port 33121 ssh2 ...	2020-09-04 13:13:04
222.186.173.142	attack	Sep 4 06:43:25 minden010 sshd[30003]: Failed password for root from 222.186.173.142 port 45746 ssh2 Sep 4 06:43:29 minden010 sshd[30003]: Failed password for root from 222.186.173.142 port 45746 ssh2 Sep 4 06:43:32 minden010 sshd[30003]: Failed password for root from 222.186.173.142 port 45746 ssh2 Sep 4 06:43:38 minden010 sshd[30003]: error: maximum authentication attempts exceeded for root from 222.186.173.142 port 45746 ssh2 [preauth] ...	2020-09-04 12:52:07
185.2.140.155	attack	Sep 4 02:21:18 vpn01 sshd[14644]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.2.140.155 Sep 4 02:21:20 vpn01 sshd[14644]: Failed password for invalid user mym from 185.2.140.155 port 33788 ssh2 ...	2020-09-04 12:45:42
201.209.143.220	attackbots	1599151790 - 09/03/2020 18:49:50 Host: 201.209.143.220/201.209.143.220 Port: 445 TCP Blocked	2020-09-04 13:11:30
118.36.139.75	attack	until 2020-09-03T11:04:38+01:00, observations: 3, bad account names: 0	2020-09-04 12:44:03
221.146.233.140	attackbotsspam	[N10.H2.VM2] Port Scanner Detected Blocked by UFW	2020-09-04 12:42:04

最近上报的IP列表

132.128.93.140	76.108.132.197	150.164.192.65	88.208.221.68
49.107.143.191	78.134.17.87	108.189.182.190	208.105.137.108
117.192.186.197	179.164.110.193	218.209.49.9	46.61.68.154
62.221.60.222	81.157.25.9	149.241.13.98	50.201.41.34
64.31.35.218	155.83.68.38	18.229.87.168	85.223.5.16