50.66.157.156 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Canada

Internet Service Provider: Shaw Communications Inc.

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbotsspam	Aug 20 23:18:33 web1 sshd\[7955\]: Invalid user alicia from 50.66.157.156 Aug 20 23:18:33 web1 sshd\[7955\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=50.66.157.156 Aug 20 23:18:35 web1 sshd\[7955\]: Failed password for invalid user alicia from 50.66.157.156 port 37680 ssh2 Aug 20 23:22:27 web1 sshd\[8277\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=50.66.157.156 user=root Aug 20 23:22:29 web1 sshd\[8277\]: Failed password for root from 50.66.157.156 port 45424 ssh2	2020-08-21 17:35:00
attackspam	DATE:2020-08-19 14:26:50,IP:50.66.157.156,MATCHES:10,PORT:ssh	2020-08-20 02:58:59
attackspam	Aug 18 11:56:26 ovpn sshd\[2527\]: Invalid user oracle from 50.66.157.156 Aug 18 11:56:26 ovpn sshd\[2527\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=50.66.157.156 Aug 18 11:56:28 ovpn sshd\[2527\]: Failed password for invalid user oracle from 50.66.157.156 port 43668 ssh2 Aug 18 12:05:42 ovpn sshd\[4775\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=50.66.157.156 user=root Aug 18 12:05:45 ovpn sshd\[4775\]: Failed password for root from 50.66.157.156 port 59606 ssh2	2020-08-18 18:45:36
attackspambots	Aug 11 13:58:31 ns382633 sshd\[9336\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=50.66.157.156 user=root Aug 11 13:58:33 ns382633 sshd\[9336\]: Failed password for root from 50.66.157.156 port 43382 ssh2 Aug 11 14:04:11 ns382633 sshd\[10329\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=50.66.157.156 user=root Aug 11 14:04:14 ns382633 sshd\[10329\]: Failed password for root from 50.66.157.156 port 43640 ssh2 Aug 11 14:08:12 ns382633 sshd\[11132\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=50.66.157.156 user=root	2020-08-12 01:48:59
attack	2020-08-04 11:50:57 server sshd[74233]: Failed password for invalid user root from 50.66.157.156 port 51992 ssh2	2020-08-07 07:28:56
attackbots	"$f2bV_matches"	2020-08-07 01:39:11
attackspam	2020-07-28T09:45:09+0200 Failed SSH Authentication/Brute Force Attack. (Server 9)	2020-07-28 16:45:52
attackspambots	Jul 27 07:54:28 plex-server sshd[4035150]: Invalid user voronin from 50.66.157.156 port 52808 Jul 27 07:54:28 plex-server sshd[4035150]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=50.66.157.156 Jul 27 07:54:28 plex-server sshd[4035150]: Invalid user voronin from 50.66.157.156 port 52808 Jul 27 07:54:30 plex-server sshd[4035150]: Failed password for invalid user voronin from 50.66.157.156 port 52808 ssh2 Jul 27 07:58:42 plex-server sshd[4037801]: Invalid user elsearch from 50.66.157.156 port 38186 ...	2020-07-27 16:10:09
attackbotsspam	Invalid user orb from 50.66.157.156 port 42054	2020-07-27 07:59:18
attackbots	Lines containing failures of 50.66.157.156 Jul 23 03:43:03 penfold sshd[9718]: Invalid user uym from 50.66.157.156 port 60362 Jul 23 03:43:03 penfold sshd[9718]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=50.66.157.156 Jul 23 03:43:05 penfold sshd[9718]: Failed password for invalid user uym from 50.66.157.156 port 60362 ssh2 Jul 23 03:43:06 penfold sshd[9718]: Received disconnect from 50.66.157.156 port 60362:11: Bye Bye [preauth] Jul 23 03:43:06 penfold sshd[9718]: Disconnected from invalid user uym 50.66.157.156 port 60362 [preauth] Jul 23 03:50:25 penfold sshd[10104]: Invalid user llb from 50.66.157.156 port 52890 Jul 23 03:50:25 penfold sshd[10104]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=50.66.157.156 Jul 23 03:50:27 penfold sshd[10104]: Failed password for invalid user llb from 50.66.157.156 port 52890 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=50.6	2020-07-26 22:37:21
attack	Invalid user tomcat from 50.66.157.156 port 46846	2020-07-25 05:07:47
attackspambots	Lines containing failures of 50.66.157.156 Jul 23 03:43:03 penfold sshd[9718]: Invalid user uym from 50.66.157.156 port 60362 Jul 23 03:43:03 penfold sshd[9718]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=50.66.157.156 Jul 23 03:43:05 penfold sshd[9718]: Failed password for invalid user uym from 50.66.157.156 port 60362 ssh2 Jul 23 03:43:06 penfold sshd[9718]: Received disconnect from 50.66.157.156 port 60362:11: Bye Bye [preauth] Jul 23 03:43:06 penfold sshd[9718]: Disconnected from invalid user uym 50.66.157.156 port 60362 [preauth] Jul 23 03:50:25 penfold sshd[10104]: Invalid user llb from 50.66.157.156 port 52890 Jul 23 03:50:25 penfold sshd[10104]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=50.66.157.156 Jul 23 03:50:27 penfold sshd[10104]: Failed password for invalid user llb from 50.66.157.156 port 52890 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=50.6	2020-07-24 13:31:19

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 50.66.157.156
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 32548
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;50.66.157.156.			IN	A

;; AUTHORITY SECTION:
.			476	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020072301 1800 900 604800 86400

;; Query time: 36 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Jul 24 13:31:16 CST 2020
;; MSG SIZE  rcvd: 117

Host info

156.157.66.50.in-addr.arpa domain name pointer S01061831bfbbe500.cg.shawcable.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
156.157.66.50.in-addr.arpa	name = S01061831bfbbe500.cg.shawcable.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
51.68.214.213	attack	Invalid user firefart from 51.68.214.213 port 53936	2020-04-17 05:42:33
183.237.191.186	attack	SSH Brute Force	2020-04-17 05:28:21
175.106.17.235	attackspam	SSH Brute Force	2020-04-17 05:30:50
121.135.146.56	attackbotsspam	SSH Brute Force	2020-04-17 05:34:06
182.254.228.197	attack	ET SCAN Suspicious inbound to MSSQL port 1433 - port: 1433 proto: TCP cat: Potentially Bad Traffic	2020-04-17 05:54:51
2001:41d0:303:6d45::	attackspambots	Apr 16 22:40:49 wordpress wordpress(www.ruhnke.cloud)[30040]: XML-RPC authentication attempt for unknown user [login] from 2001:41d0:303:6d45::	2020-04-17 05:45:32
110.35.79.23	attackbotsspam	Apr 17 00:09:53 lukav-desktop sshd\[32374\]: Invalid user ow from 110.35.79.23 Apr 17 00:09:53 lukav-desktop sshd\[32374\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=110.35.79.23 Apr 17 00:09:56 lukav-desktop sshd\[32374\]: Failed password for invalid user ow from 110.35.79.23 port 37371 ssh2 Apr 17 00:14:06 lukav-desktop sshd\[30225\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=110.35.79.23 user=root Apr 17 00:14:08 lukav-desktop sshd\[30225\]: Failed password for root from 110.35.79.23 port 40836 ssh2	2020-04-17 05:36:17
153.101.65.73	attack	ET SCAN Suspicious inbound to MSSQL port 1433 - port: 1433 proto: TCP cat: Potentially Bad Traffic	2020-04-17 05:56:21
188.254.0.112	attackspambots	SSH Brute Force	2020-04-17 05:26:39
67.205.135.127	attack	Brute force attempt	2020-04-17 05:41:10
139.59.13.53	attackspam	Apr 16 23:18:46 srv-ubuntu-dev3 sshd[24014]: Invalid user cj from 139.59.13.53 Apr 16 23:18:46 srv-ubuntu-dev3 sshd[24014]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.13.53 Apr 16 23:18:46 srv-ubuntu-dev3 sshd[24014]: Invalid user cj from 139.59.13.53 Apr 16 23:18:48 srv-ubuntu-dev3 sshd[24014]: Failed password for invalid user cj from 139.59.13.53 port 33162 ssh2 Apr 16 23:22:34 srv-ubuntu-dev3 sshd[24663]: Invalid user postgres from 139.59.13.53 Apr 16 23:22:34 srv-ubuntu-dev3 sshd[24663]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.13.53 Apr 16 23:22:34 srv-ubuntu-dev3 sshd[24663]: Invalid user postgres from 139.59.13.53 Apr 16 23:22:36 srv-ubuntu-dev3 sshd[24663]: Failed password for invalid user postgres from 139.59.13.53 port 36528 ssh2 Apr 16 23:26:16 srv-ubuntu-dev3 sshd[25294]: Invalid user gf from 139.59.13.53 ...	2020-04-17 05:32:44
185.97.116.165	attack	SSH Brute Force	2020-04-17 05:27:54
177.69.237.54	attackbotsspam	SSH Brute Force	2020-04-17 05:30:22
218.29.126.86	attack	ET SCAN Suspicious inbound to MSSQL port 1433 - port: 1433 proto: TCP cat: Potentially Bad Traffic	2020-04-17 05:47:49
37.139.2.218	attackbots	Apr 17 00:34:19 pkdns2 sshd\[63962\]: Address 37.139.2.218 maps to pplmx.com, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT!Apr 17 00:34:19 pkdns2 sshd\[63962\]: Invalid user admin from 37.139.2.218Apr 17 00:34:22 pkdns2 sshd\[63962\]: Failed password for invalid user admin from 37.139.2.218 port 41276 ssh2Apr 17 00:40:45 pkdns2 sshd\[64320\]: Address 37.139.2.218 maps to pplmx.com, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT!Apr 17 00:40:45 pkdns2 sshd\[64320\]: Invalid user nh from 37.139.2.218Apr 17 00:40:46 pkdns2 sshd\[64320\]: Failed password for invalid user nh from 37.139.2.218 port 48616 ssh2 ...	2020-04-17 05:44:45

Recently Reported IPs

122.53.63.106	182.187.95.194	70.236.190.250	37.214.2.134
103.82.14.231	90.69.46.68	92.104.45.21	34.220.250.14
190.27.63.239	27.71.122.171	87.81.198.70	181.160.165.209
118.27.51.11	202.152.21.213	101.249.197.130	149.202.189.5
51.210.182.187	14.255.201.228	117.5.159.144	201.148.144.221