50.254.13.85 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): Comcast Cable Communications LLC

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	lfd: (smtpauth) Failed SMTP AUTH login from 50.254.13.85 (US/United States/50-254-13-85-static.hfc.comcastbusiness.net): 5 in the last 3600 secs - Sat Dec 29 18:39:51 2018	2020-02-07 08:29:38

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 50.254.13.85
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 10281
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;50.254.13.85.			IN	A

;; AUTHORITY SECTION:
.			412	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020020601 1800 900 604800 86400

;; Query time: 103 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 07 08:29:35 CST 2020
;; MSG SIZE  rcvd: 116

HOST信息:

85.13.254.50.in-addr.arpa domain name pointer 50-254-13-85-static.hfc.comcastbusiness.net.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
85.13.254.50.in-addr.arpa	name = 50-254-13-85-static.hfc.comcastbusiness.net.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
111.229.124.215	attack	May 26 01:20:21 legacy sshd[30460]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.229.124.215 May 26 01:20:22 legacy sshd[30460]: Failed password for invalid user bnjoroge from 111.229.124.215 port 46018 ssh2 May 26 01:25:33 legacy sshd[30621]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.229.124.215 ...	2020-05-26 10:42:38
62.171.152.36	attackspambots	[portscan] Port scan	2020-05-26 10:42:50
223.240.89.38	attackspambots	May 26 02:30:47 home sshd[28784]: Failed password for root from 223.240.89.38 port 37844 ssh2 May 26 02:33:26 home sshd[29019]: Failed password for root from 223.240.89.38 port 51140 ssh2 ...	2020-05-26 10:44:32
3.88.203.1	attackspam	May 23 12:46:06 localhost sshd[456916]: Invalid user pus from 3.88.203.1 port 57214 May 23 12:46:06 localhost sshd[456916]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=3.88.203.1 May 23 12:46:06 localhost sshd[456916]: Invalid user pus from 3.88.203.1 port 57214 May 23 12:46:08 localhost sshd[456916]: Failed password for invalid user pus from 3.88.203.1 port 57214 ssh2 May 23 13:27:30 localhost sshd[466336]: Invalid user lrg from 3.88.203.1 port 33222 May 23 13:27:30 localhost sshd[466336]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=3.88.203.1 May 23 13:27:30 localhost sshd[466336]: Invalid user lrg from 3.88.203.1 port 33222 May 23 13:27:33 localhost sshd[466336]: Failed password for invalid user lrg from 3.88.203.1 port 33222 ssh2 May 23 13:43:44 localhost sshd[469896]: Invalid user edb from 3.88.203.1 port 55580 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=3.88.2	2020-05-26 10:32:30
123.127.198.100	attackbotsspam	May 26 02:23:33 inter-technics sshd[9330]: Invalid user keith from 123.127.198.100 port 41057 May 26 02:23:33 inter-technics sshd[9330]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.127.198.100 May 26 02:23:33 inter-technics sshd[9330]: Invalid user keith from 123.127.198.100 port 41057 May 26 02:23:36 inter-technics sshd[9330]: Failed password for invalid user keith from 123.127.198.100 port 41057 ssh2 May 26 02:27:39 inter-technics sshd[9533]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.127.198.100 user=root May 26 02:27:41 inter-technics sshd[9533]: Failed password for root from 123.127.198.100 port 22211 ssh2 ...	2020-05-26 10:23:47
223.100.140.10	attack	2020-05-26T00:15:57.993189shield sshd\[28087\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=223.100.140.10 user=root 2020-05-26T00:16:00.101883shield sshd\[28087\]: Failed password for root from 223.100.140.10 port 59266 ssh2 2020-05-26T00:20:10.678382shield sshd\[29590\]: Invalid user caleb from 223.100.140.10 port 32896 2020-05-26T00:20:10.681885shield sshd\[29590\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=223.100.140.10 2020-05-26T00:20:12.856908shield sshd\[29590\]: Failed password for invalid user caleb from 223.100.140.10 port 32896 ssh2	2020-05-26 10:36:19
97.84.225.23	attackbotsspam	May 26 01:25:52 debian-2gb-nbg1-2 kernel: \[12707953.574765\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=97.84.225.23 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=48 ID=13813 PROTO=TCP SPT=48164 DPT=23 WINDOW=33564 RES=0x00 SYN URGP=0	2020-05-26 10:26:59
51.143.90.17	attackbots	26.05.2020 01:25:30 - SMTP Spam without Auth on hMailserver Detected by ELinOX-hMail-A2F	2020-05-26 10:46:46
134.209.250.9	attackspambots	$f2bV_matches	2020-05-26 10:57:31
111.229.15.228	attackbots	May 25 16:20:38 pixelmemory sshd[1152959]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.229.15.228 May 25 16:20:38 pixelmemory sshd[1152959]: Invalid user imultack from 111.229.15.228 port 54546 May 25 16:20:40 pixelmemory sshd[1152959]: Failed password for invalid user imultack from 111.229.15.228 port 54546 ssh2 May 25 16:25:46 pixelmemory sshd[1160225]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.229.15.228 user=root May 25 16:25:48 pixelmemory sshd[1160225]: Failed password for root from 111.229.15.228 port 53706 ssh2 ...	2020-05-26 10:31:47
45.142.195.7	attack	May 26 04:29:10 relay postfix/smtpd\[21598\]: warning: unknown\[45.142.195.7\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 May 26 04:29:45 relay postfix/smtpd\[8395\]: warning: unknown\[45.142.195.7\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 May 26 04:30:04 relay postfix/smtpd\[21598\]: warning: unknown\[45.142.195.7\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 May 26 04:30:37 relay postfix/smtpd\[24920\]: warning: unknown\[45.142.195.7\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 May 26 04:30:54 relay postfix/smtpd\[2890\]: warning: unknown\[45.142.195.7\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-05-26 10:34:58
129.226.138.179	attackbotsspam	SSH/22 MH Probe, BF, Hack -	2020-05-26 10:26:00
51.77.200.139	attack	2020-05-26T04:21:24.809312sd-86998 sshd[43951]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.ip-51-77-200.eu user=root 2020-05-26T04:21:26.575892sd-86998 sshd[43951]: Failed password for root from 51.77.200.139 port 36228 ssh2 2020-05-26T04:25:08.751254sd-86998 sshd[44436]: Invalid user deborah from 51.77.200.139 port 41440 2020-05-26T04:25:08.757288sd-86998 sshd[44436]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.ip-51-77-200.eu 2020-05-26T04:25:08.751254sd-86998 sshd[44436]: Invalid user deborah from 51.77.200.139 port 41440 2020-05-26T04:25:10.609304sd-86998 sshd[44436]: Failed password for invalid user deborah from 51.77.200.139 port 41440 ssh2 ...	2020-05-26 10:43:47
183.28.67.250	attackbotsspam	1590449125 - 05/26/2020 06:25:25 Host: 183.28.67.250/183.28.67.250 Port: 23 TCP Blocked ...	2020-05-26 10:48:06
183.136.225.46	attack	May 26 04:30:20 vps339862 kernel: \[9679136.249256\] \[iptables\] PORT DENIED: IN=eth0 OUT= MAC=fa:16:3e:65:a1:f6:06:39:8f:aa:3b:a2:08:00 SRC=183.136.225.46 DST=51.254.206.43 LEN=44 TOS=0x00 PREC=0x00 TTL=108 ID=56743 PROTO=TCP SPT=13288 DPT=9443 SEQ=3811563824 ACK=0 WINDOW=29200 RES=0x00 SYN URGP=0 OPT $020405B4$ May 26 04:33:34 vps339862 kernel: \[9679330.505281\] \[iptables\] PORT DENIED: IN=eth0 OUT= MAC=fa:16:3e:65:a1:f6:06:39:8f:aa:3b:a2:08:00 SRC=183.136.225.46 DST=51.254.206.43 LEN=44 TOS=0x00 PREC=0x00 TTL=108 ID=56619 PROTO=TCP SPT=48470 DPT=8080 SEQ=1236430128 ACK=0 WINDOW=29200 RES=0x00 SYN URGP=0 OPT $020405B4$ May 26 04:36:09 vps339862 kernel: \[9679485.069029\] \[iptables\] PORT DENIED: IN=eth0 OUT= MAC=fa:16:3e:65:a1:f6:06:39:8f:aa:3b:a2:08:00 SRC=183.136.225.46 DST=51.254.206.43 LEN=44 TOS=0x00 PREC=0x00 TTL=108 ID=37588 PROTO=TCP SPT=10982 DPT=8443 SEQ=877301344 ACK=0 WINDOW=29200 RES=0x00 SYN URGP=0 OPT $020405B4$ May 26 04:38:27 vps339862 kernel: \[9679622. ...	2020-05-26 10:47:36

最近上报的IP列表

0.156.77.96	37.114.161.139	13.64.247.144	178.138.32.26
120.241.191.155	104.42.188.89	33.138.108.83	13.64.103.175
33.1.219.16	21.249.193.38	174.145.24.162	246.193.148.135
34.240.95.100	175.171.112.141	148.188.113.99	60.161.188.242
138.185.237.255	113.119.65.46	51.68.226.125	49.89.126.109