117.50.117.98 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Shanghai UCloud Information Technology Company Limited

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	" "	2020-04-14 22:12:37

相同子网IP讨论:

IP	类型	评论内容	时间
117.50.117.16	attackspam	TCP (SYN) 117.50.117.16:56358 -> port 1433, len 40	2020-07-01 17:28:52
117.50.117.16	attackbotsspam	06/29/2020-07:10:43.969703 117.50.117.16 Protocol: 6 ET SCAN Suspicious inbound to MSSQL port 1433	2020-06-29 23:20:40
117.50.117.202	attack	suspicious action Fri, 21 Feb 2020 10:13:59 -0300	2020-02-22 02:35:18
117.50.117.43	attackbots	Unauthorized connection attempt detected from IP address 117.50.117.43 to port 1433 [T]	2020-01-21 03:03:09
117.50.117.43	attackbotsspam	port scan and connect, tcp 1433 (ms-sql-s)	2019-12-07 23:12:47
117.50.117.16	attackbotsspam	port scan and connect, tcp 1433 (ms-sql-s)	2019-11-16 07:42:34

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 117.50.117.98
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 14323
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;117.50.117.98.			IN	A

;; AUTHORITY SECTION:
.			464	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020041200 1800 900 604800 86400

;; Query time: 49 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Apr 12 19:39:55 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

;; connection timed out; no servers could be reached

NSLOOKUP信息:

Server:		183.60.82.98
Address:	183.60.82.98#53

Non-authoritative answer:
*** Can't find 98.117.50.117.in-addr.arpa.: No answer

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
104.211.75.180	attackbotsspam	2019-11-13T09:36:46.6081241495-001 sshd\[47833\]: Invalid user firefox from 104.211.75.180 port 53184 2019-11-13T09:36:46.6190371495-001 sshd\[47833\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.211.75.180 2019-11-13T09:36:48.9394581495-001 sshd\[47833\]: Failed password for invalid user firefox from 104.211.75.180 port 53184 ssh2 2019-11-13T09:41:10.6389011495-001 sshd\[47975\]: Invalid user alphonso from 104.211.75.180 port 62848 2019-11-13T09:41:10.6458351495-001 sshd\[47975\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.211.75.180 2019-11-13T09:41:12.5395811495-001 sshd\[47975\]: Failed password for invalid user alphonso from 104.211.75.180 port 62848 ssh2 ...	2019-11-13 23:20:46
46.38.144.179	attack	2019-11-13T16:15:29.122161mail01 postfix/smtpd[30791]: warning: unknown[46.38.144.179]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-11-13T16:15:38.478284mail01 postfix/smtpd[3046]: warning: unknown[46.38.144.179]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-11-13T16:15:55.062718mail01 postfix/smtpd[3088]: warning: unknown[46.38.144.179]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2019-11-13 23:23:14
63.88.23.153	attackbots	63.88.23.153 was recorded 5 times by 2 hosts attempting to connect to the following ports: 80. Incident counter (4h, 24h, all-time): 5, 24, 47	2019-11-13 23:52:21
49.88.112.113	attackspambots	Failed password for root from 49.88.112.113 port 60095 ssh2 Failed password for root from 49.88.112.113 port 60095 ssh2 Failed password for root from 49.88.112.113 port 60095 ssh2 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.113 user=root Failed password for root from 49.88.112.113 port 64914 ssh2	2019-11-13 23:56:54
51.75.46.255	attack	Autoban 51.75.46.255 AUTH/CONNECT	2019-11-13 23:31:09
137.74.119.50	attackbots	2019-11-13T15:30:30.233973shield sshd\[4801\]: Invalid user grimelund from 137.74.119.50 port 40160 2019-11-13T15:30:30.238437shield sshd\[4801\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=50.ip-137-74-119.eu 2019-11-13T15:30:32.164763shield sshd\[4801\]: Failed password for invalid user grimelund from 137.74.119.50 port 40160 ssh2 2019-11-13T15:34:06.895192shield sshd\[5591\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=50.ip-137-74-119.eu user=root 2019-11-13T15:34:08.809469shield sshd\[5591\]: Failed password for root from 137.74.119.50 port 48636 ssh2	2019-11-13 23:45:37
54.37.17.251	attackspam	Invalid user gsm99 from 54.37.17.251 port 57740 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.37.17.251 Failed password for invalid user gsm99 from 54.37.17.251 port 57740 ssh2 Invalid user 123456 from 54.37.17.251 port 37926 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.37.17.251	2019-11-13 23:34:24
139.59.22.169	attackspambots	Nov 13 16:08:59 vps666546 sshd\[31314\]: Invalid user clamav from 139.59.22.169 port 58844 Nov 13 16:08:59 vps666546 sshd\[31314\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.22.169 Nov 13 16:09:01 vps666546 sshd\[31314\]: Failed password for invalid user clamav from 139.59.22.169 port 58844 ssh2 Nov 13 16:13:22 vps666546 sshd\[31545\]: Invalid user user2 from 139.59.22.169 port 39622 Nov 13 16:13:22 vps666546 sshd\[31545\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.22.169 ...	2019-11-13 23:19:21
123.142.108.122	attackspambots	F2B blocked SSH bruteforcing	2019-11-13 23:22:36
206.189.146.220	attackspambots	Nov 12 08:11:16 rb06 sshd[26050]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.146.220 user=r.r Nov 12 08:11:18 rb06 sshd[26050]: Failed password for r.r from 206.189.146.220 port 35508 ssh2 Nov 12 08:11:18 rb06 sshd[26050]: Received disconnect from 206.189.146.220: 11: Bye Bye [preauth] Nov 12 08:25:00 rb06 sshd[11317]: Failed password for invalid user cheow from 206.189.146.220 port 35568 ssh2 Nov 12 08:25:00 rb06 sshd[11317]: Received disconnect from 206.189.146.220: 11: Bye Bye [preauth] Nov 12 08:29:06 rb06 sshd[12232]: Failed password for invalid user mailman from 206.189.146.220 port 44786 ssh2 Nov 12 08:29:06 rb06 sshd[12232]: Received disconnect from 206.189.146.220: 11: Bye Bye [preauth] Nov 12 08:33:17 rb06 sshd[14446]: Failed password for invalid user wwwadmin from 206.189.146.220 port 54020 ssh2 Nov 12 08:33:17 rb06 sshd[14446]: Received disconnect from 206.189.146.220: 11: Bye Bye [preauth] ........ -------------------------------------------	2019-11-13 23:29:25
81.22.45.51	attack	Nov 13 16:18:04 mc1 kernel: \[4944559.109951\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=81.22.45.51 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=243 ID=19641 PROTO=TCP SPT=40354 DPT=6731 WINDOW=1024 RES=0x00 SYN URGP=0 Nov 13 16:18:14 mc1 kernel: \[4944569.084785\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=81.22.45.51 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=61774 PROTO=TCP SPT=40354 DPT=7761 WINDOW=1024 RES=0x00 SYN URGP=0 Nov 13 16:25:28 mc1 kernel: \[4945003.521900\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=81.22.45.51 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=243 ID=11980 PROTO=TCP SPT=40354 DPT=7602 WINDOW=1024 RES=0x00 SYN URGP=0 ...	2019-11-13 23:38:28
212.47.238.207	attackbots	Nov 13 14:43:25 ip-172-31-62-245 sshd\[15330\]: Failed password for root from 212.47.238.207 port 49846 ssh2\ Nov 13 14:47:06 ip-172-31-62-245 sshd\[15346\]: Invalid user inspired from 212.47.238.207\ Nov 13 14:47:08 ip-172-31-62-245 sshd\[15346\]: Failed password for invalid user inspired from 212.47.238.207 port 58666 ssh2\ Nov 13 14:51:06 ip-172-31-62-245 sshd\[15361\]: Invalid user ditcha from 212.47.238.207\ Nov 13 14:51:07 ip-172-31-62-245 sshd\[15361\]: Failed password for invalid user ditcha from 212.47.238.207 port 39244 ssh2\	2019-11-13 23:46:52
86.35.234.100	attackbotsspam	Automatic report - Banned IP Access	2019-11-13 23:51:15
213.136.109.67	attackspam	Nov 13 15:29:07 localhost sshd\[87052\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.136.109.67 user=root Nov 13 15:29:09 localhost sshd\[87052\]: Failed password for root from 213.136.109.67 port 37612 ssh2 Nov 13 15:33:24 localhost sshd\[87168\]: Invalid user ftp from 213.136.109.67 port 49316 Nov 13 15:33:24 localhost sshd\[87168\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.136.109.67 Nov 13 15:33:26 localhost sshd\[87168\]: Failed password for invalid user ftp from 213.136.109.67 port 49316 ssh2 ...	2019-11-13 23:46:34
85.105.213.225	attackbots	Automatic report - Port Scan Attack	2019-11-13 23:44:43

最近上报的IP列表

113.20.100.73	122.114.240.11	49.156.39.50	10.56.76.24
170.244.232.90	114.92.173.218	29.211.99.197	80.181.169.103
223.55.188.210	175.20.15.54	14.178.208.18	1.121.215.116
168.205.131.131	128.250.159.54	113.190.253.45	218.153.156.9
113.109.79.250	110.33.102.196	114.27.6.134	41.100.28.9