117.50.13.2 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Shanghai UCloud Information Technology Company Limited

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	SSH login attempts with user root at 2020-01-02.	2020-01-03 03:05:03

相同子网IP讨论:

IP	类型	评论内容	时间
117.50.13.54	attackbots	2020-09-14T02:28:13.751153ks3355764 sshd[25189]: Invalid user admin from 117.50.13.54 port 45496 2020-09-14T02:28:15.465900ks3355764 sshd[25189]: Failed password for invalid user admin from 117.50.13.54 port 45496 ssh2 ...	2020-09-15 03:07:18
117.50.13.167	attack	Sep 14 07:30:34 fhem-rasp sshd[7914]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.13.167 user=root Sep 14 07:30:36 fhem-rasp sshd[7914]: Failed password for root from 117.50.13.167 port 52142 ssh2 ...	2020-09-14 21:50:26
117.50.13.54	attackspam	2020-09-14T02:28:13.751153ks3355764 sshd[25189]: Invalid user admin from 117.50.13.54 port 45496 2020-09-14T02:28:15.465900ks3355764 sshd[25189]: Failed password for invalid user admin from 117.50.13.54 port 45496 ssh2 ...	2020-09-14 18:59:52
117.50.13.167	attackspam	Sep 14 07:30:34 fhem-rasp sshd[7914]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.13.167 user=root Sep 14 07:30:36 fhem-rasp sshd[7914]: Failed password for root from 117.50.13.167 port 52142 ssh2 ...	2020-09-14 13:44:10
117.50.13.167	attackbotsspam	ssh brute force	2020-09-14 05:41:29
117.50.13.13	attack	2020-09-13 09:28:44.341256-0500 localhost sshd[69370]: Failed password for root from 117.50.13.13 port 55836 ssh2	2020-09-13 22:34:34
117.50.13.13	attack	Sep 13 07:51:10 MainVPS sshd[21638]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.13.13 user=root Sep 13 07:51:12 MainVPS sshd[21638]: Failed password for root from 117.50.13.13 port 56794 ssh2 Sep 13 07:56:39 MainVPS sshd[23591]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.13.13 user=root Sep 13 07:56:41 MainVPS sshd[23591]: Failed password for root from 117.50.13.13 port 48626 ssh2 Sep 13 07:58:45 MainVPS sshd[24355]: Invalid user 1922 from 117.50.13.13 port 39166 ...	2020-09-13 14:30:25
117.50.13.13	attackbotsspam	Sep 13 02:17:40 lunarastro sshd[11646]: Failed password for root from 117.50.13.13 port 39300 ssh2	2020-09-13 06:14:02
117.50.137.36	attack	Port Scan/VNC login attempt ...	2020-09-06 04:00:37
117.50.137.36	attack	Port Scan/VNC login attempt ...	2020-09-05 19:43:34
117.50.137.10	attack	RDPBruteMak	2020-08-12 06:35:25
117.50.13.29	attackbotsspam	Invalid user administrator from 117.50.13.29 port 53876	2020-07-18 23:18:25
117.50.13.170	attack	Jul 8 02:17:09 server sshd[27232]: Failed password for invalid user yoshizu from 117.50.13.170 port 57058 ssh2 Jul 8 02:21:33 server sshd[30853]: Failed password for invalid user xsbk from 117.50.13.170 port 47602 ssh2 Jul 8 02:25:40 server sshd[34046]: Failed password for invalid user demo from 117.50.13.170 port 38146 ssh2	2020-07-08 08:41:24
117.50.132.62	attackbotsspam	TCP Port: 25 invalid blocked Listed on dnsbl-sorbs also barracuda and spam-sorbs (6)	2020-07-04 07:30:32
117.50.13.170	attack	SSH login attempts.	2020-06-15 02:18:09

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 117.50.13.2
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 24408
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;117.50.13.2.			IN	A

;; AUTHORITY SECTION:
.			138	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020010200 1800 900 604800 86400

;; Query time: 860 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Jan 03 03:05:00 CST 2020
;; MSG SIZE  rcvd: 115

HOST信息:

Host 2.13.50.117.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 2.13.50.117.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
222.186.180.8	attackbots	Nov 4 15:41:31 [host] sshd[28627]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.8 user=root Nov 4 15:41:33 [host] sshd[28627]: Failed password for root from 222.186.180.8 port 6192 ssh2 Nov 4 15:41:37 [host] sshd[28627]: Failed password for root from 222.186.180.8 port 6192 ssh2	2019-11-04 22:46:37
77.40.3.183	attackspambots	2019-11-04T09:59:41.067789mail01 postfix/smtpd[23727]: warning: unknown[77.40.3.183]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-11-04T10:04:44.154838mail01 postfix/smtpd[13938]: warning: unknown[77.40.3.183]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-11-04T10:08:37.290899mail01 postfix/smtpd[9222]: warning: unknown[77.40.3.183]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2019-11-04 22:28:28
182.75.249.110	attack	fail2ban	2019-11-04 23:08:54
185.13.36.90	attackbots	Nov 4 09:32:19 ny01 sshd[24018]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.13.36.90 Nov 4 09:32:21 ny01 sshd[24018]: Failed password for invalid user usuario from 185.13.36.90 port 48135 ssh2 Nov 4 09:36:17 ny01 sshd[24372]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.13.36.90	2019-11-04 22:49:06
27.71.225.85	attack	Nov 4 10:08:16 www sshd\[12238\]: Failed password for root from 27.71.225.85 port 56426 ssh2Nov 4 10:14:52 www sshd\[12298\]: Invalid user toro from 27.71.225.85Nov 4 10:14:54 www sshd\[12298\]: Failed password for invalid user toro from 27.71.225.85 port 39284 ssh2 ...	2019-11-04 22:27:51
40.117.174.151	attack	MultiHost/MultiPort Probe, Scan, Hack -	2019-11-04 22:56:38
182.61.148.116	attackbotsspam	Nov 4 14:53:48 *** sshd[13043]: User root from 182.61.148.116 not allowed because not listed in AllowUsers	2019-11-04 23:06:51
123.206.81.109	attackbots	Nov 4 12:48:52 server sshd\[19271\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.206.81.109 user=root Nov 4 12:48:54 server sshd\[19271\]: Failed password for root from 123.206.81.109 port 53094 ssh2 Nov 4 12:54:09 server sshd\[20596\]: Invalid user elf from 123.206.81.109 Nov 4 12:54:09 server sshd\[20596\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.206.81.109 Nov 4 12:54:12 server sshd\[20596\]: Failed password for invalid user elf from 123.206.81.109 port 36452 ssh2 ...	2019-11-04 22:35:35
43.254.45.10	attackbotsspam	pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=43.254.45.10 user=root Failed password for root from 43.254.45.10 port 33236 ssh2 Invalid user adolpho from 43.254.45.10 port 39844 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=43.254.45.10 Failed password for invalid user adolpho from 43.254.45.10 port 39844 ssh2	2019-11-04 22:52:32
222.186.173.215	attack	sshd jail - ssh hack attempt	2019-11-04 22:47:25
35.187.223.41	attackbots	2019-11-04 07:10:51,989 fail2ban.actions [1798]: NOTICE [sshd] Ban 35.187.223.41	2019-11-04 22:31:18
150.223.4.70	attackspam	Nov 4 04:36:14 web9 sshd\[8448\]: Invalid user caulax from 150.223.4.70 Nov 4 04:36:14 web9 sshd\[8448\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=150.223.4.70 Nov 4 04:36:16 web9 sshd\[8448\]: Failed password for invalid user caulax from 150.223.4.70 port 49975 ssh2 Nov 4 04:41:00 web9 sshd\[9103\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=150.223.4.70 user=root Nov 4 04:41:02 web9 sshd\[9103\]: Failed password for root from 150.223.4.70 port 34955 ssh2	2019-11-04 22:51:39
125.25.33.2	attackbots	Hits on port : 445	2019-11-04 22:37:23
182.73.123.118	attackspambots	Nov 4 17:16:55 server sshd\[23547\]: Invalid user jenh from 182.73.123.118 Nov 4 17:16:55 server sshd\[23547\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.73.123.118 Nov 4 17:16:56 server sshd\[23547\]: Failed password for invalid user jenh from 182.73.123.118 port 61014 ssh2 Nov 4 17:35:53 server sshd\[28458\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.73.123.118 user=root Nov 4 17:35:55 server sshd\[28458\]: Failed password for root from 182.73.123.118 port 17897 ssh2 ...	2019-11-04 23:01:11
192.99.10.122	attackbotsspam	Connection by 192.99.10.122 on port: 8545 got caught by honeypot at 11/4/2019 1:36:13 PM	2019-11-04 22:50:35

最近上报的IP列表

191.55.95.81	194.13.147.8	104.209.178.147	117.205.84.8
211.231.139.189	156.211.3.119	1.57.235.170	116.185.52.88
17.30.122.161	116.255.166.2	73.59.205.237	222.163.160.140
109.15.75.48	155.196.24.65	158.106.16.198	116.72.235.1
110.206.157.112	180.201.83.103	181.107.210.74	203.89.158.92