117.50.16.214 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Shanghai UCloud Information Technology Company Limited

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	Oct 10 15:10:39 eventyay sshd[21743]: Failed password for root from 117.50.16.214 port 42468 ssh2 Oct 10 15:15:39 eventyay sshd[21816]: Failed password for root from 117.50.16.214 port 48564 ssh2 ...	2019-10-10 21:24:55
attack	Aug 19 18:03:54 lcdev sshd\[23270\]: Invalid user xue from 117.50.16.214 Aug 19 18:03:54 lcdev sshd\[23270\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.16.214 Aug 19 18:03:56 lcdev sshd\[23270\]: Failed password for invalid user xue from 117.50.16.214 port 57472 ssh2 Aug 19 18:08:28 lcdev sshd\[23872\]: Invalid user nitin from 117.50.16.214 Aug 19 18:08:28 lcdev sshd\[23872\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.16.214	2019-08-20 15:52:03
attackbotsspam	Automatic report - Banned IP Access	2019-08-16 21:35:14
attackspambots	Aug 1 01:59:29 xtremcommunity sshd\[11983\]: Invalid user user1 from 117.50.16.214 port 54564 Aug 1 01:59:29 xtremcommunity sshd\[11983\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.16.214 Aug 1 01:59:31 xtremcommunity sshd\[11983\]: Failed password for invalid user user1 from 117.50.16.214 port 54564 ssh2 Aug 1 02:05:26 xtremcommunity sshd\[12155\]: Invalid user ab from 117.50.16.214 port 49626 Aug 1 02:05:26 xtremcommunity sshd\[12155\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.16.214 ...	2019-08-01 18:57:52
attack	Jul 23 15:21:40 debian sshd\[533\]: Invalid user app from 117.50.16.214 port 45530 Jul 23 15:21:40 debian sshd\[533\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.16.214 ...	2019-07-24 01:38:04
attackbotsspam	Jul 23 04:03:57 debian sshd\[18412\]: Invalid user ftptest from 117.50.16.214 port 50448 Jul 23 04:03:57 debian sshd\[18412\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.16.214 ...	2019-07-23 11:13:35
attack	ssh failed login	2019-07-15 23:23:18
attack	Jul 15 07:32:00 areeb-Workstation sshd\[854\]: Invalid user h from 117.50.16.214 Jul 15 07:32:00 areeb-Workstation sshd\[854\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.16.214 Jul 15 07:32:02 areeb-Workstation sshd\[854\]: Failed password for invalid user h from 117.50.16.214 port 55500 ssh2 ...	2019-07-15 10:23:45

相同子网IP讨论:

IP	类型	评论内容	时间
117.50.16.177	attackbotsspam	Dec 18 06:22:40 hcbbdb sshd\[9811\]: Invalid user carmen from 117.50.16.177 Dec 18 06:22:40 hcbbdb sshd\[9811\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.16.177 Dec 18 06:22:41 hcbbdb sshd\[9811\]: Failed password for invalid user carmen from 117.50.16.177 port 34672 ssh2 Dec 18 06:29:19 hcbbdb sshd\[11408\]: Invalid user rjoyce from 117.50.16.177 Dec 18 06:29:19 hcbbdb sshd\[11408\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.16.177	2019-12-18 16:18:25
117.50.16.177	attack	2019-12-15 04:59:54,011 fail2ban.actions \[10658\]: NOTICE \[sshd\] Ban 117.50.16.177 2019-12-15 05:48:04,689 fail2ban.actions \[10658\]: NOTICE \[sshd\] Ban 117.50.16.177 2019-12-15 06:18:54,367 fail2ban.actions \[10658\]: NOTICE \[sshd\] Ban 117.50.16.177 2019-12-15 06:56:17,999 fail2ban.actions \[10658\]: NOTICE \[sshd\] Ban 117.50.16.177 2019-12-15 07:30:04,172 fail2ban.actions \[10658\]: NOTICE \[sshd\] Ban 117.50.16.177 ...	2019-12-15 15:15:56
117.50.16.177	attackbots	Dec 14 16:01:18 zeus sshd[31108]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.16.177 Dec 14 16:01:20 zeus sshd[31108]: Failed password for invalid user ethelin from 117.50.16.177 port 57098 ssh2 Dec 14 16:08:09 zeus sshd[31317]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.16.177 Dec 14 16:08:11 zeus sshd[31317]: Failed password for invalid user nobody123456789 from 117.50.16.177 port 49442 ssh2	2019-12-15 03:50:49
117.50.16.177	attack	Dec 8 10:32:40 gw1 sshd[9806]: Failed password for root from 117.50.16.177 port 44022 ssh2 Dec 8 10:38:55 gw1 sshd[10087]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.16.177 ...	2019-12-08 13:55:53
117.50.16.177	attackbotsspam	Dec 6 19:27:46 sachi sshd\[16959\]: Invalid user mastrangelo from 117.50.16.177 Dec 6 19:27:46 sachi sshd\[16959\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.16.177 Dec 6 19:27:48 sachi sshd\[16959\]: Failed password for invalid user mastrangelo from 117.50.16.177 port 46342 ssh2 Dec 6 19:34:55 sachi sshd\[17608\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.16.177 user=root Dec 6 19:34:58 sachi sshd\[17608\]: Failed password for root from 117.50.16.177 port 46986 ssh2	2019-12-07 13:38:55
117.50.16.177	attack	Failed password for root from 117.50.16.177 port 51486 ssh2	2019-12-07 03:12:38
117.50.16.177	attackspam	Automatic report - SSH Brute-Force Attack	2019-11-29 15:32:17
117.50.16.177	attackbotsspam	Nov 20 17:51:32 www sshd\[8510\]: Invalid user jackloski from 117.50.16.177Nov 20 17:51:34 www sshd\[8510\]: Failed password for invalid user jackloski from 117.50.16.177 port 46230 ssh2Nov 20 17:56:20 www sshd\[8528\]: Failed password for root from 117.50.16.177 port 49434 ssh2 ...	2019-11-21 01:24:05

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 117.50.16.214
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 4783
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;117.50.16.214.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019071401 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Mon Jul 15 10:23:40 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

Host 214.16.50.117.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 214.16.50.117.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
185.17.41.198	attack	Oct 15 18:12:55 mail sshd[29713]: Invalid user admin1 from 185.17.41.198 Oct 15 18:12:55 mail sshd[29713]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.17.41.198 Oct 15 18:12:55 mail sshd[29713]: Invalid user admin1 from 185.17.41.198 Oct 15 18:12:57 mail sshd[29713]: Failed password for invalid user admin1 from 185.17.41.198 port 48466 ssh2 Oct 15 18:20:41 mail sshd[30708]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.17.41.198 user=root Oct 15 18:20:43 mail sshd[30708]: Failed password for root from 185.17.41.198 port 45082 ssh2 ...	2019-10-16 02:37:06
154.126.213.69	attack	[portscan] tcp/81 [alter-web/web-proxy] in spfbl.net:'listed' *(RWIN=46139)(10151156)	2019-10-16 03:10:13
24.48.174.245	attack	[portscan] tcp/23 [TELNET] in spfbl.net:'listed' *(RWIN=40937)(10151156)	2019-10-16 03:03:51
121.127.250.80	attackbotsspam	[portscan] tcp/1433 [MsSQL] in spfbl.net:'listed' *(RWIN=63443)(10151156)	2019-10-16 02:55:43
156.218.20.65	attackspam	[portscan] tcp/23 [TELNET] in spfbl.net:'listed' *(RWIN=64401)(10151156)	2019-10-16 03:09:32
2.186.45.193	attackbotsspam	[portscan] tcp/23 [TELNET] in spfbl.net:'listed' *(RWIN=19610)(10151156)	2019-10-16 02:33:55
167.99.119.118	attack	port scan/probe/communication attempt	2019-10-16 03:09:06
104.206.128.58	attack	Unauthorised access (Oct 15) SRC=104.206.128.58 LEN=44 TTL=238 ID=2154 TCP DPT=5432 WINDOW=1024 SYN Unauthorised access (Oct 14) SRC=104.206.128.58 LEN=44 TTL=238 ID=54321 TCP DPT=3389 WINDOW=65535 SYN	2019-10-16 02:41:59
101.87.167.252	attackbots	[portscan] udp/500 [isakmp] [scan/connect: 55 time(s)] in spfbl.net:'listed' *(RWIN=-)(10151156)	2019-10-16 03:13:53
198.108.67.27	attackbots	ET DROP Dshield Block Listed Source group 1 - port: 22 proto: TCP cat: Misc Attack	2019-10-16 03:06:18
94.102.50.96	attackspam	UTC: 2019-10-14 port: 80/tcp	2019-10-16 02:57:46
121.254.68.234	attackbotsspam	[portscan] tcp/23 [TELNET] *(RWIN=39312)(10151156)	2019-10-16 02:55:13
92.50.249.166	attackbotsspam	Oct 15 21:08:58 MK-Soft-VM3 sshd[19540]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=92.50.249.166 Oct 15 21:09:00 MK-Soft-VM3 sshd[19540]: Failed password for invalid user albertha from 92.50.249.166 port 37484 ssh2 ...	2019-10-16 03:14:10
52.179.178.66	attackbots	Attempt to attack host OS, exploiting network vulnerabilities, on 15-10-2019 12:40:24.	2019-10-16 03:01:26
104.206.128.46	attackbotsspam	10/15/2019-13:38:42.463361 104.206.128.46 Protocol: 6 ET SCAN NMAP -sS window 1024	2019-10-16 02:42:27

最近上报的IP列表

118.170.225.181	222.188.67.6	187.33.221.210	88.242.141.148
36.110.118.73	176.19.217.90	179.73.87.115	189.161.57.241
46.101.89.150	5.196.88.36	115.216.76.173	103.18.166.234
173.71.153.242	190.239.128.156	113.118.159.169	31.223.253.44
119.75.19.228	101.14.182.144	157.169.167.231	142.247.156.141