50.18.66.98 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States of America (the)

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 50.18.66.98
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 48518
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;50.18.66.98.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025021100 1800 900 604800 86400

;; Query time: 85 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 11 15:52:22 CST 2025
;; MSG SIZE  rcvd: 104

HOST信息:

98.66.18.50.in-addr.arpa domain name pointer ec2-50-18-66-98.us-west-1.compute.amazonaws.com.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
98.66.18.50.in-addr.arpa	name = ec2-50-18-66-98.us-west-1.compute.amazonaws.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
129.211.85.150	attack	[TueOct1521:53:11.9710612019][:error][pid13781:tid139811870451456][client129.211.85.150:55040][client129.211.85.150]ModSecurity:Accessdeniedwithcode403$phase2$.Patternmatch"$\?:\\\\\\\\\(chr\?\\\\\\\\\(\?[0-9]{1\,3}\?\\\\\\\\$\\|\?=\?f$\?:open\\|write$\?\\\\\\\\$\\|\\\\\\\\b\(\?:passthru\\|serialize\\|php_uname\\|phpinfo\\|shell_exec\\|preg_\\\\\\\\w \\|mysql_query\\|exec\\|eval\\|base64_decode\\|decode_base64\\|rot13\\|base64_url_decode\\|gz\(\?:inflate\\|decode\\|uncompress$\\|strrev\\|zlib_\\\\\\\\w \)\\\\\\\\b\?\(\?..."atARGS:widgetConfig[code].[file"/usr/local/apache.ea3/conf/modsec_rules/10_asl_rules.conf"][line"767"][id"340095"][rev"53"][msg"Atomicorp.comWAFRules:AttackBlocked-PHPfunctioninArgument-thismaybeanattack."][data"die\(@md5\,ARGS:widgetConfig[code]"][severity"CRITICAL"][hostname"148.251.104.78"][uri"/index.php"][unique_id"XaYjp@R2X63Trl-J4hXeUQAAAAo"][TueOct1521:53:14.1468352019][:error][pid8065:tid139811901921024][client129.211.85.150:55245][client129.211.85.150]ModSecurity:Accessd	2019-10-16 07:56:23
106.12.77.212	attackbots	Oct 15 16:06:29 xtremcommunity sshd\[553077\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.77.212 user=root Oct 15 16:06:31 xtremcommunity sshd\[553077\]: Failed password for root from 106.12.77.212 port 53746 ssh2 Oct 15 16:10:54 xtremcommunity sshd\[553213\]: Invalid user ig from 106.12.77.212 port 34548 Oct 15 16:10:54 xtremcommunity sshd\[553213\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.77.212 Oct 15 16:10:56 xtremcommunity sshd\[553213\]: Failed password for invalid user ig from 106.12.77.212 port 34548 ssh2 ...	2019-10-16 07:46:35
185.176.27.178	attack	Oct 16 01:27:36 h2177944 kernel: \[4058027.993003\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=185.176.27.178 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=247 ID=48282 PROTO=TCP SPT=49892 DPT=30854 WINDOW=1024 RES=0x00 SYN URGP=0 Oct 16 01:28:14 h2177944 kernel: \[4058065.684694\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=185.176.27.178 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=697 PROTO=TCP SPT=49892 DPT=45538 WINDOW=1024 RES=0x00 SYN URGP=0 Oct 16 01:28:19 h2177944 kernel: \[4058071.148941\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=185.176.27.178 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=247 ID=1989 PROTO=TCP SPT=49892 DPT=40708 WINDOW=1024 RES=0x00 SYN URGP=0 Oct 16 01:29:24 h2177944 kernel: \[4058136.464291\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=185.176.27.178 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=247 ID=31339 PROTO=TCP SPT=49892 DPT=11665 WINDOW=1024 RES=0x00 SYN URGP=0 Oct 16 01:31:16 h2177944 kernel: \[4058248.154976\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=185.176.27.178 DST=85.214	2019-10-16 07:43:43
111.223.73.20	attackspam	Oct 15 19:53:38 unicornsoft sshd\[17141\]: User root from 111.223.73.20 not allowed because not listed in AllowUsers Oct 15 19:53:38 unicornsoft sshd\[17141\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.223.73.20 user=root Oct 15 19:53:40 unicornsoft sshd\[17141\]: Failed password for invalid user root from 111.223.73.20 port 46683 ssh2	2019-10-16 07:44:25
42.159.114.184	attackbotsspam	$f2bV_matches	2019-10-16 07:40:02
95.218.13.21	attackspambots	" "	2019-10-16 07:34:04
18.197.107.157	attack	" "	2019-10-16 07:35:51
92.119.160.143	attackbotsspam	Portscan or hack attempt detected by psad/fwsnort	2019-10-16 07:43:02
115.159.220.190	attackspam	Oct 16 01:50:52 SilenceServices sshd[19965]: Failed password for root from 115.159.220.190 port 33638 ssh2 Oct 16 01:54:48 SilenceServices sshd[20955]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.159.220.190 Oct 16 01:54:50 SilenceServices sshd[20955]: Failed password for invalid user wp-user from 115.159.220.190 port 43674 ssh2	2019-10-16 07:57:11
45.95.55.25	attackspambots	Oct 16 01:05:19 mail sshd[5521]: Invalid user virtual from 45.95.55.25 Oct 16 01:05:19 mail sshd[5521]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.95.55.25 Oct 16 01:05:19 mail sshd[5521]: Invalid user virtual from 45.95.55.25 Oct 16 01:05:22 mail sshd[5521]: Failed password for invalid user virtual from 45.95.55.25 port 40552 ssh2 Oct 16 01:13:16 mail sshd[17345]: Invalid user postgres from 45.95.55.25 ...	2019-10-16 07:48:27
171.6.81.56	attackbotsspam	Oct 15 19:10:34 Tower sshd[34218]: Connection from 171.6.81.56 port 61988 on 192.168.10.220 port 22 Oct 15 19:10:36 Tower sshd[34218]: Failed password for root from 171.6.81.56 port 61988 ssh2 Oct 15 19:10:36 Tower sshd[34218]: Received disconnect from 171.6.81.56 port 61988:11: Bye Bye [preauth] Oct 15 19:10:36 Tower sshd[34218]: Disconnected from authenticating user root 171.6.81.56 port 61988 [preauth]	2019-10-16 07:48:09
52.178.142.12	attackspam	Multiple failed RDP login attempts	2019-10-16 07:46:09
222.186.173.142	attack	Oct 16 01:26:47 MK-Soft-VM7 sshd[9350]: Failed password for root from 222.186.173.142 port 15460 ssh2 Oct 16 01:26:52 MK-Soft-VM7 sshd[9350]: Failed password for root from 222.186.173.142 port 15460 ssh2 ...	2019-10-16 07:34:42
106.75.86.217	attackbotsspam	Oct 16 00:28:59 vmanager6029 sshd\[20735\]: Invalid user www12345 from 106.75.86.217 port 50980 Oct 16 00:28:59 vmanager6029 sshd\[20735\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.86.217 Oct 16 00:29:01 vmanager6029 sshd\[20735\]: Failed password for invalid user www12345 from 106.75.86.217 port 50980 ssh2	2019-10-16 07:32:11
165.227.9.184	attack	SSH Brute Force, server-1 sshd[2547]: Failed password for root from 165.227.9.184 port 30583 ssh2	2019-10-16 07:52:20

最近上报的IP列表

179.185.229.24	119.142.21.158	96.234.20.93	220.60.128.127
201.16.195.229	185.97.196.53	211.115.21.80	56.69.8.200
217.204.112.61	49.196.76.133	187.250.74.229	84.202.147.20
68.22.22.71	99.210.101.61	92.83.63.45	212.105.72.43
34.161.60.2	160.8.27.202	74.130.185.121	142.79.86.126