117.50.21.68 - IPInfo

基本信息:

城市(city): unknown

省份(region): Shanghai

国家(country): China

运营商(isp): Shanghai UCloud Information Technology Company Limited

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	Unauthorized connection attempt detected from IP address 117.50.21.68 to port 22 [T]	2020-01-07 02:12:17
attackspam	Failed password for admin from 117.50.21.68 port 57608 ssh2	2019-11-09 03:50:40

相同子网IP讨论:

IP	类型	评论内容	时间
117.50.21.168	attackspambots	scans once in preceeding hours on the ports (in chronological order) 32733 resulting in total of 1 scans from 117.50.0.0/16 block.	2020-06-07 02:49:24
117.50.21.253	attack	Jun 2 16:16:21 [host] sshd[32404]: pam_unix(sshd: Jun 2 16:16:23 [host] sshd[32404]: Failed passwor Jun 2 16:18:36 [host] sshd[32473]: pam_unix(sshd:	2020-06-03 00:03:39
117.50.21.168	attack	May 16 04:29:23 melroy-server sshd[26717]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.21.168 May 16 04:29:25 melroy-server sshd[26717]: Failed password for invalid user deploy from 117.50.21.168 port 57692 ssh2 ...	2020-05-16 23:55:48
117.50.21.168	attack	May 11 15:10:06 home sshd[13385]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.21.168 May 11 15:10:08 home sshd[13385]: Failed password for invalid user ep from 117.50.21.168 port 36036 ssh2 May 11 15:15:19 home sshd[14219]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.21.168 ...	2020-05-11 21:30:34
117.50.21.168	attack	May 2 15:27:34 host sshd[19853]: Invalid user admin6 from 117.50.21.168 port 38342 ...	2020-05-02 23:29:23
117.50.21.168	attackbots	Apr 28 18:28:35 xeon sshd[56863]: Failed password for invalid user hal from 117.50.21.168 port 39790 ssh2	2020-04-29 01:31:31
117.50.21.168	attackbots	2020-04-25T14:04:56.128059linuxbox-skyline sshd[68394]: Invalid user ts from 117.50.21.168 port 41094 ...	2020-04-26 04:21:12
117.50.21.150	attackbots	Nov 9 07:19:57 lnxded63 sshd[22570]: Failed password for root from 117.50.21.150 port 36106 ssh2 Nov 9 07:19:58 lnxded63 sshd[22570]: error: Received disconnect from 117.50.21.150 port 36106:3: [munged]:ception: Auth fail [preauth]	2019-11-09 21:21:44
117.50.21.150	attack	SSH Brute-Force reported by Fail2Ban	2019-09-29 20:30:37
117.50.21.156	attackspam	Repeated brute force against a port	2019-08-18 10:38:10

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 117.50.21.68
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 10594
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;117.50.21.68.			IN	A

;; AUTHORITY SECTION:
.			375	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019110801 1800 900 604800 86400

;; Query time: 124 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Nov 09 03:50:37 CST 2019
;; MSG SIZE  rcvd: 116

HOST信息:

Host 68.21.50.117.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 68.21.50.117.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
213.58.132.27	attack	Jun 28 15:43:59 ns3367391 sshd\[21465\]: Invalid user www from 213.58.132.27 port 49252 Jun 28 15:43:59 ns3367391 sshd\[21465\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.58.132.27 ...	2019-06-29 02:32:56
37.187.72.203	attackspambots	IP address [37.187.72.203] of xxxx has been blocked by RSYNC	2019-06-29 02:39:07
176.240.172.51	attack	Attempted WordPress login: "GET /wp-login.php"	2019-06-29 02:55:06
1.173.31.54	attackbots	5555/tcp [2019-06-28]1pkt	2019-06-29 02:57:05
194.143.150.144	attackspambots	3389/tcp 3389/tcp [2019-06-28]2pkt	2019-06-29 02:49:25
113.59.77.122	attackbotsspam	5555/tcp [2019-06-28]1pkt	2019-06-29 02:56:00
165.22.106.100	attack	Jun 28 18:17:09 ip-172-31-62-245 sshd\[7139\]: Failed password for root from 165.22.106.100 port 60070 ssh2\ Jun 28 18:17:14 ip-172-31-62-245 sshd\[7141\]: Failed password for root from 165.22.106.100 port 52874 ssh2\ Jun 28 18:17:18 ip-172-31-62-245 sshd\[7143\]: Failed password for root from 165.22.106.100 port 44996 ssh2\ Jun 28 18:17:21 ip-172-31-62-245 sshd\[7145\]: Failed password for root from 165.22.106.100 port 34446 ssh2\ Jun 28 18:17:26 ip-172-31-62-245 sshd\[7147\]: Failed password for root from 165.22.106.100 port 50736 ssh2\	2019-06-29 02:55:40
185.234.218.238	attackspam	Jun 28 19:25:54 mail postfix/smtpd\[22691\]: warning: unknown\[185.234.218.238\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Jun 28 20:02:36 mail postfix/smtpd\[23817\]: warning: unknown\[185.234.218.238\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Jun 28 20:11:42 mail postfix/smtpd\[24109\]: warning: unknown\[185.234.218.238\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Jun 28 20:20:45 mail postfix/smtpd\[24288\]: warning: unknown\[185.234.218.238\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\	2019-06-29 02:38:20
170.245.127.154	attack	445/tcp [2019-06-28]1pkt	2019-06-29 03:13:56
203.195.134.205	attack	2019-06-28T03:07:40.079587game.arvenenaske.de sshd[120301]: Invalid user dante from 203.195.134.205 port 36822 2019-06-28T03:07:40.144427game.arvenenaske.de sshd[120301]: pam_sss(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.195.134.205 user=dante 2019-06-28T03:07:40.144982game.arvenenaske.de sshd[120301]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.195.134.205 2019-06-28T03:07:40.079587game.arvenenaske.de sshd[120301]: Invalid user dante from 203.195.134.205 port 36822 2019-06-28T03:07:42.245796game.arvenenaske.de sshd[120301]: Failed password for invalid user dante from 203.195.134.205 port 36822 ssh2 2019-06-28T03:11:06.241164game.arvenenaske.de sshd[120307]: Invalid user wp from 203.195.134.205 port 59416 2019-06-28T03:11:06.246960game.arvenenaske.de sshd[120307]: pam_sss(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.195.134.205 user=wp 2019-06-28........ ------------------------------	2019-06-29 02:41:58
36.74.37.135	attackspambots	Reported by AbuseIPDB proxy server.	2019-06-29 02:36:16
125.41.139.111	attackspambots	Telnet Server BruteForce Attack	2019-06-29 02:58:59
93.81.34.96	attack	23/tcp [2019-06-28]1pkt	2019-06-29 02:47:57
60.251.195.198	attackspambots	Jun 28 20:34:13 62-210-73-4 sshd\[15716\]: Invalid user admin from 60.251.195.198 port 45224 Jun 28 20:34:15 62-210-73-4 sshd\[15716\]: Failed password for invalid user admin from 60.251.195.198 port 45224 ssh2 ...	2019-06-29 02:46:10
74.113.121.252	attack	Jun 28 17:09:12 thevastnessof sshd[10537]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=74.113.121.252 ...	2019-06-29 02:31:18

最近上报的IP列表

202.108.140.114	123.110.117.246	45.146.203.200	51.83.41.48
87.70.6.119	85.115.60.201	61.5.57.147	94.176.154.125
94.51.77.209	190.187.111.87	176.32.30.223	91.195.254.205
103.46.201.168	220.141.68.96	195.192.229.19	13.230.230.46
115.214.252.25	37.59.104.187	45.82.153.55	80.73.88.9