117.50.13.29 - IPInfo

基本信息:

城市(city): unknown

省份(region): Shanghai

国家(country): China

运营商(isp): Shanghai UCloud Information Technology Company Limited

主机名(hostname): unknown

机构(organization): China Unicom Beijing Province Network

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	Invalid user administrator from 117.50.13.29 port 53876	2020-07-18 23:18:25
attack	Unauthorized connection attempt detected from IP address 117.50.13.29 to port 22	2020-05-31 21:01:35
attackspambots	SSH Brute-Forcing (server2)	2020-05-30 14:14:29
attackbotsspam	2020-05-29T16:47:38.470761xentho-1 sshd[882783]: Invalid user nickollas from 117.50.13.29 port 46112 2020-05-29T16:47:40.555239xentho-1 sshd[882783]: Failed password for invalid user nickollas from 117.50.13.29 port 46112 ssh2 2020-05-29T16:49:07.672808xentho-1 sshd[882842]: Invalid user ftp_boot from 117.50.13.29 port 60404 2020-05-29T16:49:07.680253xentho-1 sshd[882842]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.13.29 2020-05-29T16:49:07.672808xentho-1 sshd[882842]: Invalid user ftp_boot from 117.50.13.29 port 60404 2020-05-29T16:49:09.639112xentho-1 sshd[882842]: Failed password for invalid user ftp_boot from 117.50.13.29 port 60404 ssh2 2020-05-29T16:50:34.691586xentho-1 sshd[882867]: Invalid user Administrator from 117.50.13.29 port 46464 2020-05-29T16:50:34.697090xentho-1 sshd[882867]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.13.29 2020-05-29T16:50:34.691586xentho-1 sshd[882 ...	2020-05-30 05:24:27
attackspam	May 24 21:14:09 pve1 sshd[32701]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.13.29 May 24 21:14:12 pve1 sshd[32701]: Failed password for invalid user server from 117.50.13.29 port 55948 ssh2 ...	2020-05-25 03:36:34
attackbotsspam	detected by Fail2Ban	2020-05-08 19:25:24
attack	Fail2Ban Ban Triggered (2)	2020-05-06 23:44:39
attack	Apr 8 14:38:45 markkoudstaal sshd[8977]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.13.29 Apr 8 14:38:47 markkoudstaal sshd[8977]: Failed password for invalid user gabriel from 117.50.13.29 port 44732 ssh2 Apr 8 14:43:17 markkoudstaal sshd[9610]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.13.29	2020-04-08 21:19:56
attack	SSH Brute-Forcing (server2)	2020-03-13 19:14:21
attackbotsspam	Unauthorized connection attempt detected from IP address 117.50.13.29 to port 2220 [J]	2020-02-23 18:02:16
attackbots	Unauthorized connection attempt detected from IP address 117.50.13.29 to port 2220 [J]	2020-01-26 03:53:13
attack	Jan 23 23:44:28 vps691689 sshd[8513]: Failed password for root from 117.50.13.29 port 37000 ssh2 Jan 23 23:45:15 vps691689 sshd[8533]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.13.29 ...	2020-01-24 06:51:12
attackbotsspam	Dec 21 20:07:03 server sshd\[6087\]: Invalid user user from 117.50.13.29 Dec 21 20:07:03 server sshd\[6087\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.13.29 Dec 21 20:07:05 server sshd\[6087\]: Failed password for invalid user user from 117.50.13.29 port 59346 ssh2 Dec 21 20:33:29 server sshd\[13063\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.13.29 user=root Dec 21 20:33:31 server sshd\[13063\]: Failed password for root from 117.50.13.29 port 55616 ssh2 ...	2019-12-22 03:19:23
attackbots	Dec 9 14:13:09 server sshd\[27443\]: Invalid user doramus from 117.50.13.29 Dec 9 14:13:09 server sshd\[27443\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.13.29 Dec 9 14:13:10 server sshd\[27443\]: Failed password for invalid user doramus from 117.50.13.29 port 48182 ssh2 Dec 10 07:58:51 server sshd\[8548\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.13.29 user=root Dec 10 07:58:52 server sshd\[8548\]: Failed password for root from 117.50.13.29 port 55554 ssh2 ...	2019-12-10 13:54:33
attackbotsspam	Dec 6 23:52:37 itv-usvr-01 sshd[5447]: Invalid user rijkmans from 117.50.13.29 Dec 6 23:52:37 itv-usvr-01 sshd[5447]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.13.29 Dec 6 23:52:37 itv-usvr-01 sshd[5447]: Invalid user rijkmans from 117.50.13.29 Dec 6 23:52:39 itv-usvr-01 sshd[5447]: Failed password for invalid user rijkmans from 117.50.13.29 port 58102 ssh2 Dec 6 23:59:08 itv-usvr-01 sshd[5703]: Invalid user eatg from 117.50.13.29	2019-12-07 01:13:20
attackspambots	SSH Brute-Force reported by Fail2Ban	2019-12-01 17:34:57
attack	SSH Bruteforce	2019-11-22 20:31:04
attack	2019-11-17T18:10:48.801825abusebot-4.cloudsearch.cf sshd\[17251\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.13.29 user=root	2019-11-18 02:24:56
attack	Nov 11 23:19:25 areeb-Workstation sshd[18594]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.13.29 Nov 11 23:19:27 areeb-Workstation sshd[18594]: Failed password for invalid user bababunmi from 117.50.13.29 port 48452 ssh2 ...	2019-11-12 03:23:26
attackbots	Nov 5 06:18:41 localhost sshd\[19834\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.13.29 user=root Nov 5 06:18:44 localhost sshd\[19834\]: Failed password for root from 117.50.13.29 port 33454 ssh2 Nov 5 06:23:44 localhost sshd\[20377\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.13.29 user=root	2019-11-05 13:41:34
attackspambots	SSH Brute-Force reported by Fail2Ban	2019-11-03 20:10:18
attackbotsspam	SSH Brute-Force reported by Fail2Ban	2019-11-01 06:14:40
attackbotsspam	Port Scan detected from 117.50.13.29 (CN/China/-). 4 hits in the last 225 seconds	2019-10-21 12:47:06
attackbots	2019-09-08 20:42:18,340 fail2ban.actions [814]: NOTICE [sshd] Ban 117.50.13.29 2019-09-08 23:46:12,061 fail2ban.actions [814]: NOTICE [sshd] Ban 117.50.13.29 2019-09-09 02:51:25,275 fail2ban.actions [814]: NOTICE [sshd] Ban 117.50.13.29 ...	2019-10-19 01:54:24
attackspam	Aug 24 05:46:13 cp sshd[23849]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.13.29	2019-08-24 18:48:19
attackbots	Aug 2 17:14:17 xtremcommunity sshd\[20109\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.13.29 user=root Aug 2 17:14:19 xtremcommunity sshd\[20109\]: Failed password for root from 117.50.13.29 port 38364 ssh2 Aug 2 17:21:46 xtremcommunity sshd\[20386\]: Invalid user admin from 117.50.13.29 port 32918 Aug 2 17:21:46 xtremcommunity sshd\[20386\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.13.29 Aug 2 17:21:48 xtremcommunity sshd\[20386\]: Failed password for invalid user admin from 117.50.13.29 port 32918 ssh2 ...	2019-08-03 05:25:11
attackbotsspam	Jul 31 20:49:29 ArkNodeAT sshd\[5547\]: Invalid user monero from 117.50.13.29 Jul 31 20:49:29 ArkNodeAT sshd\[5547\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.13.29 Jul 31 20:49:31 ArkNodeAT sshd\[5547\]: Failed password for invalid user monero from 117.50.13.29 port 36052 ssh2	2019-08-01 03:56:18

相同子网IP讨论:

IP	类型	评论内容	时间
117.50.13.54	attackbots	2020-09-14T02:28:13.751153ks3355764 sshd[25189]: Invalid user admin from 117.50.13.54 port 45496 2020-09-14T02:28:15.465900ks3355764 sshd[25189]: Failed password for invalid user admin from 117.50.13.54 port 45496 ssh2 ...	2020-09-15 03:07:18
117.50.13.167	attack	Sep 14 07:30:34 fhem-rasp sshd[7914]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.13.167 user=root Sep 14 07:30:36 fhem-rasp sshd[7914]: Failed password for root from 117.50.13.167 port 52142 ssh2 ...	2020-09-14 21:50:26
117.50.13.54	attackspam	2020-09-14T02:28:13.751153ks3355764 sshd[25189]: Invalid user admin from 117.50.13.54 port 45496 2020-09-14T02:28:15.465900ks3355764 sshd[25189]: Failed password for invalid user admin from 117.50.13.54 port 45496 ssh2 ...	2020-09-14 18:59:52
117.50.13.167	attackspam	Sep 14 07:30:34 fhem-rasp sshd[7914]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.13.167 user=root Sep 14 07:30:36 fhem-rasp sshd[7914]: Failed password for root from 117.50.13.167 port 52142 ssh2 ...	2020-09-14 13:44:10
117.50.13.167	attackbotsspam	ssh brute force	2020-09-14 05:41:29
117.50.13.13	attack	2020-09-13 09:28:44.341256-0500 localhost sshd[69370]: Failed password for root from 117.50.13.13 port 55836 ssh2	2020-09-13 22:34:34
117.50.13.13	attack	Sep 13 07:51:10 MainVPS sshd[21638]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.13.13 user=root Sep 13 07:51:12 MainVPS sshd[21638]: Failed password for root from 117.50.13.13 port 56794 ssh2 Sep 13 07:56:39 MainVPS sshd[23591]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.13.13 user=root Sep 13 07:56:41 MainVPS sshd[23591]: Failed password for root from 117.50.13.13 port 48626 ssh2 Sep 13 07:58:45 MainVPS sshd[24355]: Invalid user 1922 from 117.50.13.13 port 39166 ...	2020-09-13 14:30:25
117.50.13.13	attackbotsspam	Sep 13 02:17:40 lunarastro sshd[11646]: Failed password for root from 117.50.13.13 port 39300 ssh2	2020-09-13 06:14:02
117.50.137.36	attack	Port Scan/VNC login attempt ...	2020-09-06 04:00:37
117.50.137.36	attack	Port Scan/VNC login attempt ...	2020-09-05 19:43:34
117.50.137.10	attack	RDPBruteMak	2020-08-12 06:35:25
117.50.13.170	attack	Jul 8 02:17:09 server sshd[27232]: Failed password for invalid user yoshizu from 117.50.13.170 port 57058 ssh2 Jul 8 02:21:33 server sshd[30853]: Failed password for invalid user xsbk from 117.50.13.170 port 47602 ssh2 Jul 8 02:25:40 server sshd[34046]: Failed password for invalid user demo from 117.50.13.170 port 38146 ssh2	2020-07-08 08:41:24
117.50.132.62	attackbotsspam	TCP Port: 25 invalid blocked Listed on dnsbl-sorbs also barracuda and spam-sorbs (6)	2020-07-04 07:30:32
117.50.13.170	attack	SSH login attempts.	2020-06-15 02:18:09
117.50.13.170	attackspam	$f2bV_matches	2020-06-11 17:35:15

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 117.50.13.29
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 45131
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;117.50.13.29.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019073101 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Thu Aug 01 03:56:12 CST 2019
;; MSG SIZE  rcvd: 116

HOST信息:

Host 29.13.50.117.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 29.13.50.117.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
51.178.27.237	attack	May 28 21:09:27 ip-172-31-61-156 sshd[14743]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.178.27.237 May 28 21:09:27 ip-172-31-61-156 sshd[14743]: Invalid user accent from 51.178.27.237 May 28 21:09:28 ip-172-31-61-156 sshd[14743]: Failed password for invalid user accent from 51.178.27.237 port 34980 ssh2 May 28 21:15:56 ip-172-31-61-156 sshd[15115]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.178.27.237 user=root May 28 21:15:58 ip-172-31-61-156 sshd[15115]: Failed password for root from 51.178.27.237 port 39188 ssh2 ...	2020-05-29 05:23:19
175.24.132.108	attack	SSH Brute-Force Attack	2020-05-29 05:18:12
13.85.78.254	attackspambots	28.05.2020 22:09:20 - Wordpress fail Detected by ELinOX-ALM	2020-05-29 05:19:17
216.81.183.90	attack	Honeypot attack, port: 445, PTR: ip90.backbone.lh.net.	2020-05-29 05:10:03
198.12.251.247	attackspambots	198.12.251.247 - - [28/May/2020:23:09:18 +0300] "GET //wp-includes/wlwmanifest.xml HTTP/1.0" 404 1859 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0 Safari/537.36" 198.12.251.247 - - [28/May/2020:23:09:19 +0300] "GET //xmlrpc.php?rsd HTTP/1.0" 404 371 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0 Safari/537.36" 198.12.251.247 - - [28/May/2020:23:09:19 +0300] "GET //blog/wp-includes/wlwmanifest.xml HTTP/1.0" 404 1859 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0 Safari/537.36" 198.12.251.247 - - [28/May/2020:23:09:19 +0300] "GET //web/wp-includes/wlwmanifest.xml HTTP/1.0" 404 1859 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0 Safari/537.36" 198.12.251.247 - - [28/May/2020:23:09:19 +0300] "GET //wordpress/wp-includes/wlwmanifest.xml HTTP/1.0" 404 1859 "-" "Mozilla/5.0 (Windows NT 10.0 ...	2020-05-29 05:04:08
103.89.88.65	attackbots	Automatic report - Brute Force attack using this IP address	2020-05-29 05:29:25
185.156.73.60	attack	[MK-Root1] Blocked by UFW	2020-05-29 05:02:32
117.0.105.176	attackspambots	Honeypot attack, port: 445, PTR: localhost.	2020-05-29 05:09:30
200.72.197.149	attackspam	Honeypot attack, port: 445, PTR: PTR record not found	2020-05-29 05:20:29
125.212.207.205	attackbotsspam	May 28 23:03:44 vps687878 sshd\[20038\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.212.207.205 user=root May 28 23:03:45 vps687878 sshd\[20038\]: Failed password for root from 125.212.207.205 port 38656 ssh2 May 28 23:06:11 vps687878 sshd\[20416\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.212.207.205 user=root May 28 23:06:13 vps687878 sshd\[20416\]: Failed password for root from 125.212.207.205 port 43930 ssh2 May 28 23:08:29 vps687878 sshd\[20598\]: Invalid user helpdesk from 125.212.207.205 port 49196 May 28 23:08:29 vps687878 sshd\[20598\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.212.207.205 ...	2020-05-29 05:25:36
61.177.172.128	attack	May 28 23:36:54 vmd48417 sshd[26511]: Failed password for root from 61.177.172.128 port 20114 ssh2	2020-05-29 05:37:17
188.217.181.18	attack	May 28 22:53:22 eventyay sshd[22695]: Failed password for root from 188.217.181.18 port 38122 ssh2 May 28 22:57:04 eventyay sshd[22824]: Failed password for root from 188.217.181.18 port 44132 ssh2 ...	2020-05-29 05:32:58
106.12.99.204	attackbots	May 28 23:18:27 eventyay sshd[23681]: Failed password for root from 106.12.99.204 port 51052 ssh2 May 28 23:21:23 eventyay sshd[23808]: Failed password for root from 106.12.99.204 port 57536 ssh2 ...	2020-05-29 05:27:17
123.207.107.144	attackbots	May 28 22:25:32 mout sshd[29890]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.207.107.144 user=root May 28 22:25:34 mout sshd[29890]: Failed password for root from 123.207.107.144 port 51382 ssh2	2020-05-29 05:28:56
49.88.112.112	attackbots	May 28 2020, 17:25:07 [sshd] - Banned from the Mad Pony WordPress hosting platform by Fail2ban.	2020-05-29 05:26:33

最近上报的IP列表

137.13.143.198	180.126.229.15	41.50.177.170	117.95.14.218
42.112.90.50	222.96.209.196	193.170.134.147	41.13.44.21
66.249.65.140	70.74.150.110	109.126.204.77	84.228.148.99
106.75.8.129	73.89.64.131	92.156.127.126	81.221.13.105
189.37.174.249	169.226.153.159	97.200.222.160	190.38.198.23