76.149.163.50 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States of America (the)

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 76.149.163.50
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 22638
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;76.149.163.50.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025020600 1800 900 604800 86400

;; Query time: 11 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Feb 06 21:42:15 CST 2025
;; MSG SIZE  rcvd: 106

HOST信息:

50.163.149.76.in-addr.arpa domain name pointer c-76-149-163-50.hsd1.ut.comcast.net.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
50.163.149.76.in-addr.arpa	name = c-76-149-163-50.hsd1.ut.comcast.net.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
93.108.242.140	attack	(sshd) Failed SSH login from 93.108.242.140 (PT/Portugal/140.242.108.93.rev.vodafone.pt): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Jun 6 19:08:57 amsweb01 sshd[13106]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.108.242.140 user=root Jun 6 19:08:59 amsweb01 sshd[13106]: Failed password for root from 93.108.242.140 port 13258 ssh2 Jun 6 19:25:48 amsweb01 sshd[15387]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.108.242.140 user=root Jun 6 19:25:50 amsweb01 sshd[15387]: Failed password for root from 93.108.242.140 port 36509 ssh2 Jun 6 19:29:14 amsweb01 sshd[15866]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.108.242.140 user=root	2020-06-07 01:50:11
36.92.126.109	attack	SSH Bruteforce attack	2020-06-07 01:47:41
116.102.21.8	attackspambots	Automatic report - Port Scan Attack	2020-06-07 01:38:02
195.54.160.213	attack	TCP (SYN) 195.54.160.213:59446 -> port 13371, len 44	2020-06-07 01:57:17
195.54.161.40	attackbots	Jun 6 20:51:39 debian kernel: [368459.559502] [UFW BLOCK] IN=eth0 OUT= MAC=52:54:00:be:e4:65:08:e8:4f:6e:48:0c:08:00 SRC=195.54.161.40 DST=89.252.131.35 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=22827 PROTO=TCP SPT=49661 DPT=5747 WINDOW=1024 RES=0x00 SYN URGP=0	2020-06-07 01:56:18
167.114.103.140	attackspambots	Jun 6 15:29:18 vpn01 sshd[19315]: Failed password for root from 167.114.103.140 port 45145 ssh2 ...	2020-06-07 02:02:29
86.193.149.7	attackspam	port scan and connect, tcp 80 (http)	2020-06-07 02:01:22
119.90.126.87	attack	scans 2 times in preceeding hours on the ports (in chronological order) 1727 3141	2020-06-07 02:12:23
104.194.11.173	attackbotsspam	port	2020-06-07 02:14:59
106.12.129.167	attackspam	Lines containing failures of 106.12.129.167 Jun 5 23:14:30 newdogma sshd[32633]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.129.167 user=r.r Jun 5 23:14:32 newdogma sshd[32633]: Failed password for r.r from 106.12.129.167 port 37472 ssh2 Jun 5 23:14:33 newdogma sshd[32633]: Received disconnect from 106.12.129.167 port 37472:11: Bye Bye [preauth] Jun 5 23:14:33 newdogma sshd[32633]: Disconnected from authenticating user r.r 106.12.129.167 port 37472 [preauth] Jun 5 23:25:57 newdogma sshd[516]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.129.167 user=r.r Jun 5 23:25:59 newdogma sshd[516]: Failed password for r.r from 106.12.129.167 port 42458 ssh2 Jun 5 23:26:00 newdogma sshd[516]: Received disconnect from 106.12.129.167 port 42458:11: Bye Bye [preauth] Jun 5 23:26:00 newdogma sshd[516]: Disconnected from authenticating user r.r 106.12.129.167 port 42458 [preaut........ ------------------------------	2020-06-07 01:51:34
223.99.126.67	attack	Jun 6 17:18:12 host sshd[374]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=223.99.126.67 user=root Jun 6 17:18:14 host sshd[374]: Failed password for root from 223.99.126.67 port 55632 ssh2 ...	2020-06-07 02:07:55
95.255.14.141	attackspambots	2020-06-06T13:22:17.018266abusebot-8.cloudsearch.cf sshd[10860]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.255.14.141 user=root 2020-06-06T13:22:19.350244abusebot-8.cloudsearch.cf sshd[10860]: Failed password for root from 95.255.14.141 port 38704 ssh2 2020-06-06T13:25:33.705151abusebot-8.cloudsearch.cf sshd[11103]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.255.14.141 user=root 2020-06-06T13:25:35.746299abusebot-8.cloudsearch.cf sshd[11103]: Failed password for root from 95.255.14.141 port 42532 ssh2 2020-06-06T13:28:43.416411abusebot-8.cloudsearch.cf sshd[11279]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.255.14.141 user=root 2020-06-06T13:28:44.875276abusebot-8.cloudsearch.cf sshd[11279]: Failed password for root from 95.255.14.141 port 46768 ssh2 2020-06-06T13:31:55.401537abusebot-8.cloudsearch.cf sshd[11447]: pam_unix(sshd:auth): authe ...	2020-06-07 01:41:19
39.109.210.10	attackspam	Brute-force attempt banned	2020-06-07 02:01:40
91.247.113.138	attack	1591446551 - 06/06/2020 14:29:11 Host: 91.247.113.138/91.247.113.138 Port: 445 TCP Blocked	2020-06-07 02:03:03
78.189.151.107	attackspambots	[Sat Jun 06 19:29:32.249843 2020] [:error] [pid 10153:tid 140368939824896] [client 78.189.151.107:35100] [client 78.189.151.107] ModSecurity: Access denied with code 403 (phase 2). Pattern match "^[\\\\d.:]+$" at REQUEST_HEADERS:Host. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "696"] [id "920350"] [msg "Host header is a numeric IP address"] [data "103.27.207.197:80"] [severity "WARNING"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/IP_HOST"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A7"] [tag "PCI/6.5.10"] [hostname "103.27.207.197"] [uri "/"] [unique_id "XtuMLKGxEHVU1NBsQcdV4QAAAh0"] ...	2020-06-07 01:36:07

最近上报的IP列表

210.177.216.65	156.94.128.158	250.192.25.23	72.238.24.217
14.221.115.56	63.176.12.223	27.6.60.227	163.214.119.86
130.141.112.4	17.110.19.209	50.243.97.29	2.53.20.161
152.23.112.243	235.4.176.201	179.138.24.5	167.35.130.4
135.90.174.237	213.240.40.53	107.160.218.10	141.215.18.30