50.65.89.148 - IPInfo

Basic Info

City: Sherwood Park

Region: Alberta

Country: Canada

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 50.65.89.148
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 48668
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;50.65.89.148.			IN	A

;; AUTHORITY SECTION:
.			572	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019121001 1800 900 604800 86400

;; Query time: 52 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Dec 11 03:36:07 CST 2019
;; MSG SIZE  rcvd: 116

Host info

148.89.65.50.in-addr.arpa domain name pointer S0106bc9b680d23c7.ed.shawcable.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
148.89.65.50.in-addr.arpa	name = S0106bc9b680d23c7.ed.shawcable.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
118.25.133.121	attackspambots	2020-10-03T02:35:38.421606hostname sshd[48170]: Failed password for invalid user ubuntu from 118.25.133.121 port 36560 ssh2 ...	2020-10-05 03:59:44
91.231.83.67	attackbots	Bruteforce detected by fail2ban	2020-10-05 03:51:22
203.170.190.154	attackspam	Oct 4 21:19:33 PorscheCustomer sshd[27130]: Failed password for root from 203.170.190.154 port 51110 ssh2 Oct 4 21:20:37 PorscheCustomer sshd[27156]: Failed password for root from 203.170.190.154 port 34618 ssh2 ...	2020-10-05 03:28:49
172.104.108.109	attack	srvr1: (mod_security) mod_security (id:920350) triggered by 172.104.108.109 (US/-/scan-92.security.ipip.net): 1 in the last 3600 secs; Ports: ; Direction: inout; Trigger: LF_MODSEC; Logs: 2020/10/04 19:47:33 [error] 246777#0: 198802 [client 172.104.108.109] ModSecurity: Access denied with code 406 (phase 2). Matched "Operator `Rx' with parameter `^[\d.:]+$' against variable `REQUEST_HEADERS:Host' [redacted] [file "/etc/modsecurity.d/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "718"] [id "920350"] [rev ""] [msg "Host header is a numeric IP address"] [redacted] [severity "4"] [ver "OWASP_CRS/3.3.0"] [maturity "0"] [accuracy "0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/210/272"] [tag "PCI/6.5.10"] [redacted] [uri "/"] [unique_id "160183365376.869714"] [ref "o0,13v21,13"], client: 172.104.108.109, [redacted] request: "GET / HTTP/1.1" [redacted]	2020-10-05 03:53:39
125.124.254.31	attackspambots	(sshd) Failed SSH login from 125.124.254.31 (CN/China/Zhejiang/Jiaxing Shi (Pinghu Shi)/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Oct 4 14:57:22 atlas sshd[26096]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.124.254.31 user=root Oct 4 14:57:23 atlas sshd[26096]: Failed password for root from 125.124.254.31 port 37400 ssh2 Oct 4 15:20:43 atlas sshd[32387]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.124.254.31 user=root Oct 4 15:20:46 atlas sshd[32387]: Failed password for root from 125.124.254.31 port 46946 ssh2 Oct 4 15:24:56 atlas sshd[946]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.124.254.31 user=root	2020-10-05 04:03:56
192.241.239.21	attack	TCP (SYN) 192.241.239.21:32893 -> port 502, len 44	2020-10-05 03:37:49
202.79.53.208	attackspam	Wordpress File Manager Plugin Remote Code Execution Vulnerability, PTR: PTR record not found	2020-10-05 03:38:57
170.210.221.48	attack	Oct 4 18:05:57 nopemail auth.info sshd[30037]: Disconnected from authenticating user root 170.210.221.48 port 43852 [preauth] ...	2020-10-05 03:36:45
92.101.30.51	attack	TCP (SYN) 92.101.30.51:49775 -> port 445, len 52	2020-10-05 03:51:07
2.88.83.74	attackbotsspam	Wordpress File Manager Plugin Remote Code Execution Vulnerability, PTR: PTR record not found	2020-10-05 03:47:51
37.187.107.217	attackspam	2020-10-04 13:12:53.446039-0500 localhost sshd[89091]: Failed password for root from 37.187.107.217 port 41160 ssh2	2020-10-05 03:37:04
5.202.179.40	attackbots	Icarus honeypot on github	2020-10-05 04:06:46
163.172.251.159	attackspam	masters-of-media.de 163.172.251.159 [04/Oct/2020:10:48:35 +0200] "POST /wp-login.php HTTP/1.1" 200 6823 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" masters-of-media.de 163.172.251.159 [04/Oct/2020:10:48:36 +0200] "POST /wp-login.php HTTP/1.1" 200 6782 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-10-05 04:03:36
45.148.122.191	attack	SSH Bruteforce Attempt on Honeypot	2020-10-05 03:54:11
59.27.124.26	attack	SSH brute-force attack detected from [59.27.124.26]	2020-10-05 03:52:20

Recently Reported IPs

62.10.17.29	87.4.151.144	27.152.138.72	66.205.0.59
27.74.124.0	126.25.132.33	5.62.49.94	190.42.21.77
50.117.12.139	88.228.197.17	2.195.233.180	50.236.9.215
12.184.125.116	68.140.48.107	126.117.188.147	165.165.89.176
96.252.55.67	74.184.16.97	85.215.3.29	157.245.46.17