117.50.117.202

基本信息:

城市(city): unknown

省份(region): Shanghai

国家(country): China

运营商(isp): Shanghai UCloud Information Technology Company Limited

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	suspicious action Fri, 21 Feb 2020 10:13:59 -0300	2020-02-22 02:35:18

相同子网IP讨论:

IP	类型	评论内容	时间
117.50.117.16	attackspam	TCP (SYN) 117.50.117.16:56358 -> port 1433, len 40	2020-07-01 17:28:52
117.50.117.16	attackbotsspam	06/29/2020-07:10:43.969703 117.50.117.16 Protocol: 6 ET SCAN Suspicious inbound to MSSQL port 1433	2020-06-29 23:20:40
117.50.117.98	attack	" "	2020-04-14 22:12:37
117.50.117.43	attackbots	Unauthorized connection attempt detected from IP address 117.50.117.43 to port 1433 [T]	2020-01-21 03:03:09
117.50.117.43	attackbotsspam	port scan and connect, tcp 1433 (ms-sql-s)	2019-12-07 23:12:47
117.50.117.16	attackbotsspam	port scan and connect, tcp 1433 (ms-sql-s)	2019-11-16 07:42:34

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 117.50.117.202
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 15721
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;117.50.117.202.			IN	A

;; AUTHORITY SECTION:
.			591	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020010201 1800 900 604800 86400

;; Query time: 49 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Jan 03 05:00:55 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

Host 202.117.50.117.in-addr.arpa not found: 2(SERVFAIL)

NSLOOKUP信息:

Server:		183.60.82.98
Address:	183.60.82.98#53

Non-authoritative answer:
*** Can't find 202.117.50.117.in-addr.arpa.: No answer

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
167.99.158.136	attackbots	Nov 2 01:16:06 ny01 sshd[24813]: Failed password for root from 167.99.158.136 port 47776 ssh2 Nov 2 01:20:01 ny01 sshd[25164]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.99.158.136 Nov 2 01:20:03 ny01 sshd[25164]: Failed password for invalid user bot from 167.99.158.136 port 57428 ssh2	2019-11-02 17:08:28
64.161.153.34	attackbots	Unauthorized connection attempt from IP address 64.161.153.34 on Port 445(SMB)	2019-11-02 17:45:29
94.25.239.45	attackbots	Unauthorized connection attempt from IP address 94.25.239.45 on Port 445(SMB)	2019-11-02 17:44:36
112.85.42.88	attackbots	Nov 1 18:31:06 sachi sshd\[31397\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.88 user=root Nov 1 18:31:08 sachi sshd\[31397\]: Failed password for root from 112.85.42.88 port 15137 ssh2 Nov 1 18:31:42 sachi sshd\[31442\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.88 user=root Nov 1 18:31:45 sachi sshd\[31442\]: Failed password for root from 112.85.42.88 port 52516 ssh2 Nov 1 18:32:22 sachi sshd\[31497\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.88 user=root	2019-11-02 17:26:24
182.61.170.251	attackbotsspam	Nov 2 10:11:07 vps01 sshd[13644]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.170.251 Nov 2 10:11:10 vps01 sshd[13644]: Failed password for invalid user unit from 182.61.170.251 port 33518 ssh2	2019-11-02 17:18:47
81.171.85.138	attackbotsspam	\[2019-11-02 05:31:08\] NOTICE\[2601\] chan_sip.c: Registration from '\' failed for '81.171.85.138:50520' - Wrong password \[2019-11-02 05:31:08\] SECURITY\[2634\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-11-02T05:31:08.817-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="1120",SessionID="0x7fdf2c411158",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/81.171.85.138/50520",Challenge="1e58773e",ReceivedChallenge="1e58773e",ReceivedHash="99783d04fb8648333c057c02faaed42a" \[2019-11-02 05:32:06\] NOTICE\[2601\] chan_sip.c: Registration from '\' failed for '81.171.85.138:60696' - Wrong password \[2019-11-02 05:32:06\] SECURITY\[2634\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-11-02T05:32:06.395-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="354",SessionID="0x7fdf2cd1cd48",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/81.171.85.1	2019-11-02 17:42:43
221.217.52.21	attack	SSH Brute-Force reported by Fail2Ban	2019-11-02 17:13:54
45.123.41.150	attack	Unauthorized connection attempt from IP address 45.123.41.150 on Port 445(SMB)	2019-11-02 17:20:11
124.123.104.209	attackbots	Unauthorized connection attempt from IP address 124.123.104.209 on Port 445(SMB)	2019-11-02 17:39:01
148.70.11.98	attackspambots	Nov 2 04:42:16 MK-Soft-VM7 sshd[30585]: Failed password for root from 148.70.11.98 port 48722 ssh2 ...	2019-11-02 17:09:39
96.251.179.115	attackspambots	Invalid user sinusbot from 96.251.179.115 port 41068	2019-11-02 17:13:25
112.169.255.1	attack	2019-11-02T10:22:42.559496scmdmz1 sshd\[32483\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.169.255.1 user=root 2019-11-02T10:22:44.556663scmdmz1 sshd\[32483\]: Failed password for root from 112.169.255.1 port 60396 ssh2 2019-11-02T10:27:22.126594scmdmz1 sshd\[334\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.169.255.1 user=root ...	2019-11-02 17:45:47
185.26.99.102	attackspambots	slow and persistent scanner	2019-11-02 17:15:34
157.230.113.218	attackspam	Nov 1 23:25:52 tdfoods sshd\[1378\]: Invalid user lanzhong2009idc from 157.230.113.218 Nov 1 23:25:52 tdfoods sshd\[1378\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.113.218 Nov 1 23:25:53 tdfoods sshd\[1378\]: Failed password for invalid user lanzhong2009idc from 157.230.113.218 port 60278 ssh2 Nov 1 23:29:56 tdfoods sshd\[1741\]: Invalid user ctk from 157.230.113.218 Nov 1 23:29:56 tdfoods sshd\[1741\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.113.218	2019-11-02 17:31:22
222.175.67.234	attack	Unauthorized connection attempt from IP address 222.175.67.234 on Port 445(SMB)	2019-11-02 17:23:10

最近上报的IP列表

73.75.48.109	14.120.17.250	109.154.95.127	63.163.46.14
45.71.76.130	150.109.63.204	101.160.240.179	220.1.154.185
75.236.5.30	136.169.152.93	176.164.79.244	205.207.226.114
51.79.141.187	139.196.92.7	206.133.131.212	31.251.219.46
177.209.0.32	152.237.227.218	96.250.156.169	116.106.26.170