50.254.13.85 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): Comcast Cable Communications LLC

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	lfd: (smtpauth) Failed SMTP AUTH login from 50.254.13.85 (US/United States/50-254-13-85-static.hfc.comcastbusiness.net): 5 in the last 3600 secs - Sat Dec 29 18:39:51 2018	2020-02-07 08:29:38

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 50.254.13.85
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 10281
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;50.254.13.85.			IN	A

;; AUTHORITY SECTION:
.			412	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020020601 1800 900 604800 86400

;; Query time: 103 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 07 08:29:35 CST 2020
;; MSG SIZE  rcvd: 116

HOST信息:

85.13.254.50.in-addr.arpa domain name pointer 50-254-13-85-static.hfc.comcastbusiness.net.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
85.13.254.50.in-addr.arpa	name = 50-254-13-85-static.hfc.comcastbusiness.net.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
209.97.167.163	attack	Sep 7 23:42:36 pornomens sshd\[26635\]: Invalid user mysql from 209.97.167.163 port 45574 Sep 7 23:42:36 pornomens sshd\[26635\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=209.97.167.163 Sep 7 23:42:38 pornomens sshd\[26635\]: Failed password for invalid user mysql from 209.97.167.163 port 45574 ssh2 ...	2019-09-08 05:43:33
106.13.19.75	attackbots	Sep 7 16:28:10 ny01 sshd[13809]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.19.75 Sep 7 16:28:11 ny01 sshd[13809]: Failed password for invalid user s3rv3r from 106.13.19.75 port 45246 ssh2 Sep 7 16:33:15 ny01 sshd[14708]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.19.75	2019-09-08 05:09:29
202.29.70.42	attackspam	Sep 7 10:47:25 ny01 sshd[13368]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.29.70.42 Sep 7 10:47:26 ny01 sshd[13368]: Failed password for invalid user test from 202.29.70.42 port 56582 ssh2 Sep 7 10:52:17 ny01 sshd[14156]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.29.70.42	2019-09-08 05:03:22
218.98.40.132	attackspam	SSH Brute Force, server-1 sshd[14430]: Failed password for root from 218.98.40.132 port 59986 ssh2	2019-09-08 05:43:11
5.253.18.191	attack	Unauthorized access detected from banned ip	2019-09-08 05:41:14
186.170.28.46	attack	Sep 7 01:11:30 sachi sshd\[558\]: Invalid user smbguest from 186.170.28.46 Sep 7 01:11:30 sachi sshd\[558\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.170.28.46 Sep 7 01:11:32 sachi sshd\[558\]: Failed password for invalid user smbguest from 186.170.28.46 port 49327 ssh2 Sep 7 01:16:02 sachi sshd\[1073\]: Invalid user 1q2w3e from 186.170.28.46 Sep 7 01:16:02 sachi sshd\[1073\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.170.28.46	2019-09-08 05:19:03
139.199.100.51	attackbotsspam	Apr 14 19:00:01 vtv3 sshd\[8159\]: Invalid user vrouwerff from 139.199.100.51 port 53063 Apr 14 19:00:01 vtv3 sshd\[8159\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.100.51 Apr 14 19:00:03 vtv3 sshd\[8159\]: Failed password for invalid user vrouwerff from 139.199.100.51 port 53063 ssh2 Apr 14 19:07:21 vtv3 sshd\[12162\]: Invalid user csserver from 139.199.100.51 port 39798 Apr 14 19:07:21 vtv3 sshd\[12162\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.100.51 Apr 16 06:40:21 vtv3 sshd\[10489\]: Invalid user Access from 139.199.100.51 port 18148 Apr 16 06:40:21 vtv3 sshd\[10489\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.100.51 Apr 16 06:40:24 vtv3 sshd\[10489\]: Failed password for invalid user Access from 139.199.100.51 port 18148 ssh2 Apr 16 06:49:45 vtv3 sshd\[14565\]: Invalid user tac1 from 139.199.100.51 port 4829 Apr 16 06:49:45 vtv3 ssh	2019-09-08 05:21:41
94.23.218.74	attackbots	Sep 7 16:23:06 vps200512 sshd\[691\]: Invalid user admin from 94.23.218.74 Sep 7 16:23:06 vps200512 sshd\[691\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.23.218.74 Sep 7 16:23:07 vps200512 sshd\[691\]: Failed password for invalid user admin from 94.23.218.74 port 46650 ssh2 Sep 7 16:26:36 vps200512 sshd\[724\]: Invalid user ts from 94.23.218.74 Sep 7 16:26:36 vps200512 sshd\[724\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.23.218.74	2019-09-08 05:06:47
192.160.102.169	attackbots	langenachtfulda.de:80 192.160.102.169 - - \[07/Sep/2019:12:39:07 +0200\] "POST /xmlrpc.php HTTP/1.0" 301 503 "-" "Mozilla/5.0 \(X11\; Linux x86_64\) AppleWebKit/537.36 \(KHTML, like Gecko\) Chrome/67.0.3396.99 Safari/537.36" langenachtfulda.de 192.160.102.169 \[07/Sep/2019:12:39:09 +0200\] "POST /xmlrpc.php HTTP/1.0" 200 3777 "-" "Mozilla/5.0 \(X11\; Linux x86_64\) AppleWebKit/537.36 \(KHTML, like Gecko\) Chrome/67.0.3396.99 Safari/537.36"	2019-09-08 05:31:07
78.128.113.77	attackspambots	Sep 7 17:06:54 web1 postfix/smtpd[29096]: warning: unknown[78.128.113.77]: SASL LOGIN authentication failed: authentication failure ...	2019-09-08 05:07:07
51.158.113.104	attackspam	Sep 7 13:50:17 eventyay sshd[307]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.158.113.104 Sep 7 13:50:18 eventyay sshd[307]: Failed password for invalid user ts from 51.158.113.104 port 44322 ssh2 Sep 7 13:54:47 eventyay sshd[432]: Failed password for root from 51.158.113.104 port 59550 ssh2 ...	2019-09-08 05:16:11
51.159.17.204	attack	Sep 7 11:29:41 php1 sshd\[21196\]: Invalid user smbuser from 51.159.17.204 Sep 7 11:29:41 php1 sshd\[21196\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.159.17.204 Sep 7 11:29:43 php1 sshd\[21196\]: Failed password for invalid user smbuser from 51.159.17.204 port 50948 ssh2 Sep 7 11:33:43 php1 sshd\[21594\]: Invalid user webmaster from 51.159.17.204 Sep 7 11:33:43 php1 sshd\[21594\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.159.17.204	2019-09-08 05:39:01
183.181.84.19	attackspam	fail2ban honeypot	2019-09-08 05:04:20
222.161.56.248	attackspambots	[ssh] SSH attack	2019-09-08 05:27:22
221.202.195.40	attackspam	Sep 7 12:41:11 web1 sshd[22378]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.202.195.40 user=r.r Sep 7 12:41:13 web1 sshd[22378]: Failed password for r.r from 221.202.195.40 port 34709 ssh2 Sep 7 12:41:15 web1 sshd[22378]: Failed password for r.r from 221.202.195.40 port 34709 ssh2 Sep 7 12:41:17 web1 sshd[22378]: Failed password for r.r from 221.202.195.40 port 34709 ssh2 Sep 7 12:41:20 web1 sshd[22378]: Failed password for r.r from 221.202.195.40 port 34709 ssh2 Sep 7 12:41:23 web1 sshd[22378]: Failed password for r.r from 221.202.195.40 port 34709 ssh2 Sep 7 12:41:25 web1 sshd[22378]: Failed password for r.r from 221.202.195.40 port 34709 ssh2 Sep 7 12:41:25 web1 sshd[22378]: PAM 5 more authentication failures; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.202.195.40 user=r.r ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=221.202.195.40	2019-09-08 05:27:48

最近上报的IP列表

0.156.77.96	37.114.161.139	13.64.247.144	178.138.32.26
120.241.191.155	104.42.188.89	33.138.108.83	13.64.103.175
33.1.219.16	21.249.193.38	174.145.24.162	246.193.148.135
34.240.95.100	175.171.112.141	148.188.113.99	60.161.188.242
138.185.237.255	113.119.65.46	51.68.226.125	49.89.126.109