50.200.220.18 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States of America

运营商(isp): Comcast Cable Communications LLC

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	Brute forcing RDP port 3389	2020-07-14 14:47:39

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 50.200.220.18
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 780
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;50.200.220.18.			IN	A

;; AUTHORITY SECTION:
.			354	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020071400 1800 900 604800 86400

;; Query time: 66 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Jul 14 14:47:34 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

18.220.200.50.in-addr.arpa domain name pointer 50-200-220-18-static.hfc.comcastbusiness.net.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
18.220.200.50.in-addr.arpa	name = 50-200-220-18-static.hfc.comcastbusiness.net.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
115.159.66.109	attackspam	Lines containing failures of 115.159.66.109 Nov 26 20:35:49 zabbix sshd[117477]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.159.66.109 user=r.r Nov 26 20:35:51 zabbix sshd[117477]: Failed password for r.r from 115.159.66.109 port 59266 ssh2 Nov 26 20:35:52 zabbix sshd[117477]: Received disconnect from 115.159.66.109 port 59266:11: Bye Bye [preauth] Nov 26 20:35:52 zabbix sshd[117477]: Disconnected from authenticating user r.r 115.159.66.109 port 59266 [preauth] Nov 26 21:04:01 zabbix sshd[120056]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.159.66.109 user=mysql Nov 26 21:04:04 zabbix sshd[120056]: Failed password for mysql from 115.159.66.109 port 34598 ssh2 Nov 26 21:04:04 zabbix sshd[120056]: Received disconnect from 115.159.66.109 port 34598:11: Bye Bye [preauth] Nov 26 21:04:04 zabbix sshd[120056]: Disconnected from authenticating user mysql 115.159.66.109 port 34598 [........ ------------------------------	2019-11-30 22:22:52
134.119.218.243	attackspam	Unauthorized access detected from banned ip	2019-11-30 22:32:53
106.13.147.69	attack	Invalid user alister from 106.13.147.69 port 51678	2019-11-30 22:06:43
185.176.27.170	attack	11/30/2019-14:28:01.523628 185.176.27.170 Protocol: 6 ET DROP Dshield Block Listed Source group 1	2019-11-30 22:30:01
14.186.20.139	attackspam	Nov 30 01:10:18 penfold postfix/smtpd[2042]: warning: hostname static.vnpt.vn does not resolve to address 14.186.20.139 Nov 30 01:10:18 penfold postfix/smtpd[2042]: connect from unknown[14.186.20.139] Nov x@x Nov x@x Nov x@x Nov x@x Nov x@x Nov x@x Nov x@x Nov x@x Nov x@x Nov x@x Nov x@x Nov x@x ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=14.186.20.139	2019-11-30 22:10:05
88.247.161.188	attack	Automatic report - Port Scan Attack	2019-11-30 22:00:28
13.68.137.194	attackspambots	Invalid user smmsp from 13.68.137.194 port 52244	2019-11-30 22:16:45
94.25.60.244	attackspam	Unauthorized connection attempt from IP address 94.25.60.244 on Port 445(SMB)	2019-11-30 22:36:05
195.13.178.5	attackbotsspam	Unauthorized connection attempt from IP address 195.13.178.5 on Port 445(SMB)	2019-11-30 22:34:33
154.221.16.167	attackspambots	Login script scanning - /wordpress/wp-config	2019-11-30 22:20:31
185.150.234.65	attack	postfix (unknown user, SPF fail or relay access denied)	2019-11-30 21:53:29
66.207.68.117	attackbots	66.207.68.117 - - \[30/Nov/2019:09:54:29 +0100\] "POST /wp-login.php HTTP/1.0" 200 4128 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 66.207.68.117 - - \[30/Nov/2019:09:54:30 +0100\] "POST /wp-login.php HTTP/1.0" 200 3955 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 66.207.68.117 - - \[30/Nov/2019:09:54:31 +0100\] "POST /xmlrpc.php HTTP/1.0" 200 736 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"	2019-11-30 22:00:49
1.34.177.249	attackspambots	Telnet/23 MH Probe, BF, Hack -	2019-11-30 22:06:31
51.91.122.140	attackbots	Nov 30 15:59:08 site1 sshd\[40125\]: Invalid user yazmine from 51.91.122.140Nov 30 15:59:09 site1 sshd\[40125\]: Failed password for invalid user yazmine from 51.91.122.140 port 38016 ssh2Nov 30 16:02:12 site1 sshd\[40206\]: Failed password for root from 51.91.122.140 port 46036 ssh2Nov 30 16:05:19 site1 sshd\[40294\]: Invalid user idalia from 51.91.122.140Nov 30 16:05:21 site1 sshd\[40294\]: Failed password for invalid user idalia from 51.91.122.140 port 54052 ssh2Nov 30 16:08:30 site1 sshd\[40460\]: Invalid user test from 51.91.122.140 ...	2019-11-30 22:24:41
113.179.133.34	attackbots	Unauthorised access (Nov 30) SRC=113.179.133.34 LEN=52 TTL=116 ID=11270 DF TCP DPT=445 WINDOW=8192 SYN	2019-11-30 21:59:57

最近上报的IP列表

154.179.99.198	220.182.2.252	204.47.198.75	105.32.53.3
54.208.232.132	186.249.24.6	193.112.16.224	51.195.47.153
93.174.89.19	62.104.18.69	118.24.18.30	72.49.50.75
124.195.219.122	103.121.122.145	178.149.52.191	108.62.49.158
14.229.4.66	113.88.15.40	190.75.117.217	222.112.255.124