117.50.117.98 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Shanghai UCloud Information Technology Company Limited

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	" "	2020-04-14 22:12:37

相同子网IP讨论:

IP	类型	评论内容	时间
117.50.117.16	attackspam	TCP (SYN) 117.50.117.16:56358 -> port 1433, len 40	2020-07-01 17:28:52
117.50.117.16	attackbotsspam	06/29/2020-07:10:43.969703 117.50.117.16 Protocol: 6 ET SCAN Suspicious inbound to MSSQL port 1433	2020-06-29 23:20:40
117.50.117.202	attack	suspicious action Fri, 21 Feb 2020 10:13:59 -0300	2020-02-22 02:35:18
117.50.117.43	attackbots	Unauthorized connection attempt detected from IP address 117.50.117.43 to port 1433 [T]	2020-01-21 03:03:09
117.50.117.43	attackbotsspam	port scan and connect, tcp 1433 (ms-sql-s)	2019-12-07 23:12:47
117.50.117.16	attackbotsspam	port scan and connect, tcp 1433 (ms-sql-s)	2019-11-16 07:42:34

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 117.50.117.98
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 14323
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;117.50.117.98.			IN	A

;; AUTHORITY SECTION:
.			464	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020041200 1800 900 604800 86400

;; Query time: 49 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Apr 12 19:39:55 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

;; connection timed out; no servers could be reached

NSLOOKUP信息:

Server:		183.60.82.98
Address:	183.60.82.98#53

Non-authoritative answer:
*** Can't find 98.117.50.117.in-addr.arpa.: No answer

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
95.167.178.149	attack	Bruteforce detected by fail2ban	2020-09-12 12:02:09
128.199.212.15	attack	Sep 12 03:01:19 XXXXXX sshd[14587]: Invalid user 123456 from 128.199.212.15 port 58518	2020-09-12 12:06:25
74.118.88.203	attack	74.118.88.203 - - [11/Sep/2020:18:53:16 +0200] "GET / HTTP/1.1" 301 651 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/52.0.2743.116 Safari/537.36" ...	2020-09-12 07:49:44
151.80.37.200	attack	Sep 11 19:07:12 email sshd\[20175\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=151.80.37.200 user=root Sep 11 19:07:14 email sshd\[20175\]: Failed password for root from 151.80.37.200 port 51540 ssh2 Sep 11 19:13:39 email sshd\[21234\]: Invalid user matias from 151.80.37.200 Sep 11 19:13:39 email sshd\[21234\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=151.80.37.200 Sep 11 19:13:40 email sshd\[21234\]: Failed password for invalid user matias from 151.80.37.200 port 35452 ssh2 ...	2020-09-12 07:37:12
159.65.83.42	attack	Sep 11 21:33:48 sshgateway sshd\[15293\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.83.42 user=root Sep 11 21:33:51 sshgateway sshd\[15293\]: Failed password for root from 159.65.83.42 port 60828 ssh2 Sep 11 21:41:02 sshgateway sshd\[16028\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.83.42 user=root	2020-09-12 07:48:08
222.186.30.76	attackspambots	Sep 12 03:52:55 124388 sshd[17241]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.30.76 user=root Sep 12 03:52:57 124388 sshd[17241]: Failed password for root from 222.186.30.76 port 17601 ssh2 Sep 12 03:52:55 124388 sshd[17241]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.30.76 user=root Sep 12 03:52:57 124388 sshd[17241]: Failed password for root from 222.186.30.76 port 17601 ssh2 Sep 12 03:52:59 124388 sshd[17241]: Failed password for root from 222.186.30.76 port 17601 ssh2	2020-09-12 12:03:12
35.199.73.100	attack	Sep 11 18:27:27 vlre-nyc-1 sshd\[18950\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.199.73.100 user=root Sep 11 18:27:29 vlre-nyc-1 sshd\[18950\]: Failed password for root from 35.199.73.100 port 57892 ssh2 Sep 11 18:32:02 vlre-nyc-1 sshd\[19000\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.199.73.100 user=root Sep 11 18:32:04 vlre-nyc-1 sshd\[19000\]: Failed password for root from 35.199.73.100 port 43816 ssh2 Sep 11 18:36:31 vlre-nyc-1 sshd\[19067\]: Invalid user test1 from 35.199.73.100 ...	2020-09-12 07:32:52
51.77.220.127	attackspambots	51.77.220.127 - - [12/Sep/2020:07:00:35 +0400] "POST /GponForm/diag_Form?style/ HTTP/1.1" 502 157 "-" "curl/7.3.2" ...	2020-09-12 12:02:38
51.254.22.172	attack	Sep 11 21:45:49 sshgateway sshd\[16966\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.254.22.172 user=root Sep 11 21:45:51 sshgateway sshd\[16966\]: Failed password for root from 51.254.22.172 port 45072 ssh2 Sep 11 21:54:32 sshgateway sshd\[18266\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.254.22.172 user=root	2020-09-12 07:31:09
94.102.49.106	attack	Fail2Ban Ban Triggered	2020-09-12 07:39:28
20.52.44.92	attack	DE US/United States/- Hits: 11	2020-09-12 12:15:28
92.222.90.130	attack	[SID2] Fail2ban detected 5 failed SSH login attempts within 30 minutes. This report was submitted automatically.	2020-09-12 07:47:49
218.92.0.246	attackspam	2020-09-12T02:41:08.206798afi-git.jinr.ru sshd[3898]: Failed password for root from 218.92.0.246 port 44005 ssh2 2020-09-12T02:41:11.404473afi-git.jinr.ru sshd[3898]: Failed password for root from 218.92.0.246 port 44005 ssh2 2020-09-12T02:41:14.340901afi-git.jinr.ru sshd[3898]: Failed password for root from 218.92.0.246 port 44005 ssh2 2020-09-12T02:41:14.341072afi-git.jinr.ru sshd[3898]: error: maximum authentication attempts exceeded for root from 218.92.0.246 port 44005 ssh2 [preauth] 2020-09-12T02:41:14.341085afi-git.jinr.ru sshd[3898]: Disconnecting: Too many authentication failures [preauth] ...	2020-09-12 07:53:46
190.144.139.76	attackspam	Sep 11 23:12:00 localhost sshd[3144021]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.144.139.76 user=root Sep 11 23:12:02 localhost sshd[3144021]: Failed password for root from 190.144.139.76 port 40279 ssh2 Sep 11 23:13:07 localhost sshd[3146671]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.144.139.76 user=root Sep 11 23:13:09 localhost sshd[3146671]: Failed password for root from 190.144.139.76 port 60804 ssh2 Sep 11 23:14:16 localhost sshd[3149020]: Invalid user mari from 190.144.139.76 port 13431 ...	2020-09-12 07:33:11
139.99.148.4	attackspam	139.99.148.4 - - [11/Sep/2020:17:53:47 +0100] "POST /wp-login.php HTTP/1.1" 200 2221 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.99.148.4 - - [11/Sep/2020:17:53:49 +0100] "POST /wp-login.php HTTP/1.1" 200 2147 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.99.148.4 - - [11/Sep/2020:17:53:50 +0100] "POST /xmlrpc.php HTTP/1.1" 200 247 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-09-12 07:46:05

最近上报的IP列表

113.20.100.73	122.114.240.11	49.156.39.50	10.56.76.24
170.244.232.90	114.92.173.218	29.211.99.197	80.181.169.103
223.55.188.210	175.20.15.54	14.178.208.18	1.121.215.116
168.205.131.131	128.250.159.54	113.190.253.45	218.153.156.9
113.109.79.250	110.33.102.196	114.27.6.134	41.100.28.9