50.237.139.58 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): Comcast Cable Communications LLC

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	2020-01-07T05:35:22.352Z CLOSE host=50.237.139.58 port=56585 fd=4 time=20.020 bytes=21 ...	2020-03-13 03:10:21
attackbotsspam	Unauthorized connection attempt detected from IP address 50.237.139.58 to port 22	2020-03-11 02:08:47
attackspambots	Unauthorized connection attempt detected from IP address 50.237.139.58 to port 22	2020-01-11 00:45:00
attackspambots	Jan 10 08:10:56 amit sshd\[25388\]: Invalid user @dmin-tgr2 from 50.237.139.58 Jan 10 08:10:56 amit sshd\[25388\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=50.237.139.58 Jan 10 08:10:59 amit sshd\[25388\]: Failed password for invalid user @dmin-tgr2 from 50.237.139.58 port 41992 ssh2 ...	2020-01-10 15:29:36
attack	Unauthorized connection attempt detected from IP address 50.237.139.58 to port 22	2020-01-10 06:40:32

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 50.237.139.58
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 14702
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;50.237.139.58.			IN	A

;; AUTHORITY SECTION:
.			447	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020010901 1800 900 604800 86400

;; Query time: 106 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Jan 10 06:40:30 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

58.139.237.50.in-addr.arpa domain name pointer 50-237-139-58-static.hfc.comcastbusiness.net.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
58.139.237.50.in-addr.arpa	name = 50-237-139-58-static.hfc.comcastbusiness.net.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
192.81.211.152	attack	Nov 9 22:03:09 odroid64 sshd\[23397\]: User root from 192.81.211.152 not allowed because not listed in AllowUsers Nov 9 22:03:09 odroid64 sshd\[23397\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.81.211.152 user=root ...	2019-11-21 18:57:10
154.85.34.154	attack	Nov 21 06:41:16 *** sshd[32344]: Invalid user hervig from 154.85.34.154	2019-11-21 18:48:53
36.80.147.210	attackbotsspam	Honeypot attack, port: 445, PTR: PTR record not found	2019-11-21 18:18:58
185.156.73.7	attackbots	ET DROP Dshield Block Listed Source group 1 - port: 25687 proto: TCP cat: Misc Attack	2019-11-21 18:14:59
106.13.52.247	attackbotsspam	Nov 21 12:02:40 microserver sshd[14270]: Invalid user juul from 106.13.52.247 port 36078 Nov 21 12:02:40 microserver sshd[14270]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.52.247 Nov 21 12:02:42 microserver sshd[14270]: Failed password for invalid user juul from 106.13.52.247 port 36078 ssh2 Nov 21 12:07:26 microserver sshd[14933]: Invalid user dovecot from 106.13.52.247 port 37704 Nov 21 12:07:26 microserver sshd[14933]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.52.247 Nov 21 12:20:52 microserver sshd[29194]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.52.247 user=root Nov 21 12:20:54 microserver sshd[29194]: Failed password for root from 106.13.52.247 port 42564 ssh2 Nov 21 12:24:38 microserver sshd[45755]: Invalid user estape from 106.13.52.247 port 44156 Nov 21 12:24:38 microserver sshd[45755]: pam_unix(sshd:auth): authentication failure; logname= ui	2019-11-21 18:40:16
78.155.200.91	attackbotsspam	Nov 21 05:34:57 plusreed sshd[13474]: Invalid user caroot from 78.155.200.91 Nov 21 05:34:57 plusreed sshd[13474]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=78.155.200.91 Nov 21 05:34:57 plusreed sshd[13474]: Invalid user caroot from 78.155.200.91 Nov 21 05:34:59 plusreed sshd[13474]: Failed password for invalid user caroot from 78.155.200.91 port 38016 ssh2 Nov 21 05:38:22 plusreed sshd[14168]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=78.155.200.91 user=root Nov 21 05:38:24 plusreed sshd[14168]: Failed password for root from 78.155.200.91 port 46514 ssh2 ...	2019-11-21 18:40:48
89.218.191.26	attackbots	Honeypot attack, port: 445, PTR: PTR record not found	2019-11-21 18:46:20
51.68.47.45	attackbots	2019-11-21T08:03:04.244138shield sshd\[4398\]: Invalid user musicbot123 from 51.68.47.45 port 39388 2019-11-21T08:03:04.247366shield sshd\[4398\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.ip-51-68-47.eu 2019-11-21T08:03:05.739554shield sshd\[4398\]: Failed password for invalid user musicbot123 from 51.68.47.45 port 39388 ssh2 2019-11-21T08:06:35.808938shield sshd\[4703\]: Invalid user beaches from 51.68.47.45 port 47626 2019-11-21T08:06:35.813160shield sshd\[4703\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.ip-51-68-47.eu	2019-11-21 18:18:35
118.171.154.80	attackspambots	Honeypot attack, port: 23, PTR: 118-171-154-80.dynamic-ip.hinet.net.	2019-11-21 18:30:19
106.54.17.235	attackspambots	Nov 21 11:11:40 SilenceServices sshd[12215]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.17.235 Nov 21 11:11:41 SilenceServices sshd[12215]: Failed password for invalid user thyagarajan from 106.54.17.235 port 37748 ssh2 Nov 21 11:16:05 SilenceServices sshd[13747]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.17.235	2019-11-21 18:17:52
79.203.51.69	attackbotsspam	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/79.203.51.69/ DE - 1H : (51) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : DE NAME ASN : ASN3320 IP : 79.203.51.69 CIDR : 79.192.0.0/10 PREFIX COUNT : 481 UNIQUE IP COUNT : 29022208 ATTACKS DETECTED ASN3320 : 1H - 1 3H - 3 6H - 5 12H - 13 24H - 21 DateTime : 2019-11-21 07:25:49 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery	2019-11-21 18:16:24
139.99.195.161	attack	139.99.195.161 was recorded 5 times by 1 hosts attempting to connect to the following ports: 9887. Incident counter (4h, 24h, all-time): 5, 21, 40	2019-11-21 18:36:31
222.186.169.192	attack	Nov 21 11:16:46 meumeu sshd[28574]: Failed password for root from 222.186.169.192 port 37976 ssh2 Nov 21 11:17:02 meumeu sshd[28574]: Failed password for root from 222.186.169.192 port 37976 ssh2 Nov 21 11:17:02 meumeu sshd[28574]: error: maximum authentication attempts exceeded for root from 222.186.169.192 port 37976 ssh2 [preauth] ...	2019-11-21 18:19:28
185.156.73.34	attackbotsspam	firewall-block, port(s): 8764/tcp, 8765/tcp, 47437/tcp, 47438/tcp, 47439/tcp	2019-11-21 18:26:23
49.236.192.74	attack	2019-11-21T10:28:51.980546abusebot-2.cloudsearch.cf sshd\[2176\]: Invalid user hinson from 49.236.192.74 port 35438	2019-11-21 18:53:25

最近上报的IP列表

252.91.123.158	23.107.45.251	35.63.101.168	105.64.40.184
6.98.2.137	176.223.233.241	236.59.135.119	36.22.174.159
49.174.196.197	0.3.210.3	32.139.22.167	123.74.183.109
182.73.195.13	247.23.166.34	68.49.91.139	185.53.88.108
123.21.3.196	183.62.225.103	87.81.253.202	197.55.103.225