117.50.14.130 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Shanghai UCloud Information Technology Company Limited

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	Invalid user torpedo from 117.50.14.130 port 33326	2020-09-15 04:01:32
attack	Invalid user torpedo from 117.50.14.130 port 33326	2020-09-14 20:02:13

相同子网IP讨论:

IP	类型	评论内容	时间
117.50.14.123	attackbotsspam	sshd: Failed password for .... from 117.50.14.123 port 54546 ssh2 (8 attempts)	2020-09-14 21:58:43
117.50.14.123	attackspambots	Sep 14 07:36:13 ns392434 sshd[13793]: Invalid user tiger from 117.50.14.123 port 56238 Sep 14 07:36:13 ns392434 sshd[13793]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.14.123 Sep 14 07:36:13 ns392434 sshd[13793]: Invalid user tiger from 117.50.14.123 port 56238 Sep 14 07:36:15 ns392434 sshd[13793]: Failed password for invalid user tiger from 117.50.14.123 port 56238 ssh2 Sep 14 07:39:33 ns392434 sshd[13994]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.14.123 user=root Sep 14 07:39:35 ns392434 sshd[13994]: Failed password for root from 117.50.14.123 port 60144 ssh2 Sep 14 07:42:01 ns392434 sshd[14018]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.14.123 user=root Sep 14 07:42:03 ns392434 sshd[14018]: Failed password for root from 117.50.14.123 port 56058 ssh2 Sep 14 07:44:22 ns392434 sshd[14073]: Invalid user user from 117.50.14.123 port 51970	2020-09-14 13:52:33
117.50.14.123	attackbots	Lines containing failures of 117.50.14.123 Sep 12 19:18:02 shared07 sshd[4543]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.14.123 user=r.r Sep 12 19:18:03 shared07 sshd[4543]: Failed password for r.r from 117.50.14.123 port 45626 ssh2 Sep 12 19:18:04 shared07 sshd[4543]: Received disconnect from 117.50.14.123 port 45626:11: Bye Bye [preauth] Sep 12 19:18:04 shared07 sshd[4543]: Disconnected from authenticating user r.r 117.50.14.123 port 45626 [preauth] Sep 12 19:31:06 shared07 sshd[9557]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.14.123 user=r.r Sep 12 19:31:08 shared07 sshd[9557]: Failed password for r.r from 117.50.14.123 port 58638 ssh2 Sep 12 19:31:08 shared07 sshd[9557]: Received disconnect from 117.50.14.123 port 58638:11: Bye Bye [preauth] Sep 12 19:31:08 shared07 sshd[9557]: Disconnected from authenticating user r.r 117.50.14.123 port 58638 [preauth] Sep 12........ ------------------------------	2020-09-14 05:50:16
117.50.140.230	attack	Invalid user rr from 117.50.140.230 port 39059	2020-04-22 03:51:46
117.50.140.230	attackbotsspam	Invalid user rr from 117.50.140.230 port 39059	2020-04-20 23:02:22

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 117.50.14.130
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 22415
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;117.50.14.130.			IN	A

;; AUTHORITY SECTION:
.			355	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020091400 1800 900 604800 86400

;; Query time: 41 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Sep 14 20:02:07 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

Host 130.14.50.117.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		100.100.2.138
Address:	100.100.2.138#53

** server can't find 130.14.50.117.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
222.186.42.163	attack	19/10/4@08:56:21: FAIL: IoT-SSH address from=222.186.42.163 ...	2019-10-04 21:00:03
180.131.110.95	attackbots	2019-10-04T07:40:52.0063451495-001 sshd\[50102\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.110.131.180.west.global.crust-r.net user=root 2019-10-04T07:40:54.8779641495-001 sshd\[50102\]: Failed password for root from 180.131.110.95 port 47466 ssh2 2019-10-04T07:56:53.5383361495-001 sshd\[50994\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.110.131.180.west.global.crust-r.net user=root 2019-10-04T07:56:55.6313971495-001 sshd\[50994\]: Failed password for root from 180.131.110.95 port 43968 ssh2 2019-10-04T08:20:33.5491021495-001 sshd\[52252\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.110.131.180.west.global.crust-r.net user=root 2019-10-04T08:20:35.4306281495-001 sshd\[52252\]: Failed password for root from 180.131.110.95 port 44786 ssh2 ...	2019-10-04 20:31:59
49.234.116.13	attackbotsspam	Oct 4 02:19:54 hanapaa sshd\[14409\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.116.13 user=root Oct 4 02:19:56 hanapaa sshd\[14409\]: Failed password for root from 49.234.116.13 port 51178 ssh2 Oct 4 02:24:51 hanapaa sshd\[14800\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.116.13 user=root Oct 4 02:24:53 hanapaa sshd\[14800\]: Failed password for root from 49.234.116.13 port 58350 ssh2 Oct 4 02:29:35 hanapaa sshd\[15157\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.116.13 user=root	2019-10-04 20:40:53
51.91.10.173	attackspam	SSH Brute Force attempt	2019-10-04 21:03:12
104.200.110.184	attackspam	$f2bV_matches	2019-10-04 20:50:08
183.110.242.142	attackspam	Oct 4 12:49:48 artelis kernel: [92785.491406] [UFW BLOCK] IN=eth0 OUT= MAC=c2:45:3b:cb:6e:17:ec:38:73:0c:70:30:08:00 SRC=183.110.242.142 DST=167.99.196.43 LEN=40 TOS=0x08 PREC=0x20 TTL=76 ID=27286 DF PROTO=TCP SPT=51773 DPT=443 WINDOW=29200 RES=0x00 SYN URGP=0 Oct 4 12:50:02 artelis kernel: [92799.827818] [UFW BLOCK] IN=eth0 OUT= MAC=c2:45:3b:cb:6e:17:ec:38:73:0c:70:30:08:00 SRC=183.110.242.142 DST=167.99.196.43 LEN=40 TOS=0x08 PREC=0x20 TTL=61 ID=65042 DF PROTO=TCP SPT=57600 DPT=995 WINDOW=29200 RES=0x00 SYN URGP=0 Oct 4 12:50:04 artelis kernel: [92801.088796] [UFW BLOCK] IN=eth0 OUT= MAC=c2:45:3b:cb:6e:17:ec:38:73:0c:70:30:08:00 SRC=183.110.242.142 DST=167.99.196.43 LEN=40 TOS=0x08 PREC=0x20 TTL=72 ID=16207 DF PROTO=TCP SPT=55478 DPT=995 WINDOW=29200 RES=0x00 SYN URGP=0 Oct 4 12:50:25 artelis kernel: [92822.577718] [UFW BLOCK] IN=eth0 OUT= MAC=c2:45:3b:cb:6e:17:ec:38:73:0c:18:30:08:00 SRC=183.110.242.142 DST=167.99.196.43 LEN=40 TOS=0x08 PREC=0x20 TTL=61 ID=62788 DF PROTO=TCP ...	2019-10-04 20:54:47
43.248.189.64	attackbotsspam	Oct 4 14:29:40 jane sshd[5487]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=43.248.189.64 Oct 4 14:29:42 jane sshd[5487]: Failed password for invalid user !@#ZAQ from 43.248.189.64 port 33882 ssh2 ...	2019-10-04 20:36:52
41.140.165.3	attackspam	DATE:2019-10-04 14:29:19, IP:41.140.165.3, PORT:telnet - Telnet brute force auth on a honeypot server (epe-dc)	2019-10-04 20:52:29
193.112.27.92	attackbots	Oct 4 14:42:49 meumeu sshd[22557]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.112.27.92 Oct 4 14:42:52 meumeu sshd[22557]: Failed password for invalid user Santos1@3 from 193.112.27.92 port 42320 ssh2 Oct 4 14:47:41 meumeu sshd[23480]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.112.27.92 ...	2019-10-04 20:57:29
103.35.65.203	attackbotsspam	Automatic report - XMLRPC Attack	2019-10-04 20:51:26
5.135.182.141	attack	Oct 4 02:41:55 php1 sshd\[14043\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ns3289000.ip-5-135-182.eu user=root Oct 4 02:41:57 php1 sshd\[14043\]: Failed password for root from 5.135.182.141 port 60486 ssh2 Oct 4 02:46:16 php1 sshd\[14591\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ns3289000.ip-5-135-182.eu user=root Oct 4 02:46:18 php1 sshd\[14591\]: Failed password for root from 5.135.182.141 port 44814 ssh2 Oct 4 02:50:40 php1 sshd\[15325\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ns3289000.ip-5-135-182.eu user=root	2019-10-04 21:05:30
222.186.175.8	attack	Automated report - ssh fail2ban: Oct 4 15:06:11 wrong password, user=root, port=31102, ssh2 Oct 4 15:06:18 wrong password, user=root, port=31102, ssh2 Oct 4 15:06:23 wrong password, user=root, port=31102, ssh2 Oct 4 15:06:29 wrong password, user=root, port=31102, ssh2	2019-10-04 21:07:57
222.186.31.145	attackspam	Oct 4 14:29:40 MK-Soft-VM4 sshd[9484]: Failed password for root from 222.186.31.145 port 42845 ssh2 Oct 4 14:29:43 MK-Soft-VM4 sshd[9484]: Failed password for root from 222.186.31.145 port 42845 ssh2 ...	2019-10-04 20:34:36
85.248.42.101	attackbots	2019-10-04T07:25:41.543122ns525875 sshd\[15423\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.248.42.101 user=root 2019-10-04T07:25:43.309228ns525875 sshd\[15423\]: Failed password for root from 85.248.42.101 port 58520 ssh2 2019-10-04T07:31:09.103789ns525875 sshd\[22029\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.248.42.101 user=root 2019-10-04T07:31:11.231537ns525875 sshd\[22029\]: Failed password for root from 85.248.42.101 port 55644 ssh2 ...	2019-10-04 20:28:42
191.36.190.6	attackspam	Automatic report - Port Scan Attack	2019-10-04 21:03:58

最近上报的IP列表

50.93.23.58	168.67.141.244	118.244.42.117	18.118.113.160
176.214.108.130	225.13.50.128	241.147.64.238	194.182.97.208
242.191.184.90	103.119.146.255	9.150.240.119	23.6.73.86
58.226.184.227	22.251.92.248	9.168.195.79	87.233.212.42
99.81.170.201	115.97.102.193	106.13.78.210	59.109.85.7