城市(city): unknown
省份(region): Shanghai
国家(country): China
运营商(isp): Shanghai UCloud Information Technology Company Limited
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): Data Center/Web Hosting/Transit
| 类型 | 评论内容 | 时间 |
|---|---|---|
| attackbots | Unauthorized connection attempt detected from IP address 117.50.21.68 to port 22 [T] |
2020-01-07 02:12:17 |
| attackspam | Failed password for admin from 117.50.21.68 port 57608 ssh2 |
2019-11-09 03:50:40 |
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 117.50.21.168 | attackspambots | scans once in preceeding hours on the ports (in chronological order) 32733 resulting in total of 1 scans from 117.50.0.0/16 block. |
2020-06-07 02:49:24 |
| 117.50.21.253 | attack | Jun 2 16:16:21 [host] sshd[32404]: pam_unix(sshd: Jun 2 16:16:23 [host] sshd[32404]: Failed passwor Jun 2 16:18:36 [host] sshd[32473]: pam_unix(sshd: |
2020-06-03 00:03:39 |
| 117.50.21.168 | attack | May 16 04:29:23 melroy-server sshd[26717]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.21.168 May 16 04:29:25 melroy-server sshd[26717]: Failed password for invalid user deploy from 117.50.21.168 port 57692 ssh2 ... |
2020-05-16 23:55:48 |
| 117.50.21.168 | attack | May 11 15:10:06 home sshd[13385]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.21.168 May 11 15:10:08 home sshd[13385]: Failed password for invalid user ep from 117.50.21.168 port 36036 ssh2 May 11 15:15:19 home sshd[14219]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.21.168 ... |
2020-05-11 21:30:34 |
| 117.50.21.168 | attack | May 2 15:27:34 host sshd[19853]: Invalid user admin6 from 117.50.21.168 port 38342 ... |
2020-05-02 23:29:23 |
| 117.50.21.168 | attackbots | Apr 28 18:28:35 xeon sshd[56863]: Failed password for invalid user hal from 117.50.21.168 port 39790 ssh2 |
2020-04-29 01:31:31 |
| 117.50.21.168 | attackbots | 2020-04-25T14:04:56.128059linuxbox-skyline sshd[68394]: Invalid user ts from 117.50.21.168 port 41094 ... |
2020-04-26 04:21:12 |
| 117.50.21.150 | attackbots | Nov 9 07:19:57 lnxded63 sshd[22570]: Failed password for root from 117.50.21.150 port 36106 ssh2 Nov 9 07:19:58 lnxded63 sshd[22570]: error: Received disconnect from 117.50.21.150 port 36106:3: [munged]:ception: Auth fail [preauth] |
2019-11-09 21:21:44 |
| 117.50.21.150 | attack | SSH Brute-Force reported by Fail2Ban |
2019-09-29 20:30:37 |
| 117.50.21.156 | attackspam | Repeated brute force against a port |
2019-08-18 10:38:10 |
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 117.50.21.68
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 10594
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;117.50.21.68. IN A
;; AUTHORITY SECTION:
. 375 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2019110801 1800 900 604800 86400
;; Query time: 124 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Nov 09 03:50:37 CST 2019
;; MSG SIZE rcvd: 116Host 68.21.50.117.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 68.21.50.117.in-addr.arpa: NXDOMAIN| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 222.186.46.59 | attackbots | 24.06.2019 17:22:40 Connection to port 3306 blocked by firewall |
2019-06-25 05:08:10 |
| 113.53.245.46 | attackbotsspam | [SMB remote code execution attempt: port tcp/445] *(RWIN=8192)(06240931) |
2019-06-25 04:56:14 |
| 182.75.104.140 | attack | [SMB remote code execution attempt: port tcp/445] *(RWIN=1024)(06240931) |
2019-06-25 04:48:51 |
| 198.108.66.114 | attackbotsspam | [portscan] tcp/21 [FTP] *(RWIN=65535)(06240931) |
2019-06-25 04:42:52 |
| 183.87.44.177 | attackspam | [SMB remote code execution attempt: port tcp/445] *(RWIN=8192)(06240931) |
2019-06-25 05:14:25 |
| 194.58.71.112 | attack | [SMB remote code execution attempt: port tcp/445] *(RWIN=1024)(06240931) |
2019-06-25 05:11:41 |
| 183.83.147.61 | attackbots | [SMB remote code execution attempt: port tcp/445] *(RWIN=8192)(06240931) |
2019-06-25 05:14:55 |
| 119.54.192.252 | attackspam | [portscan] tcp/23 [TELNET] *(RWIN=7193)(06240931) |
2019-06-25 04:54:54 |
| 35.241.229.237 | attackspambots | [portscan] tcp/110 [POP3] *(RWIN=65535)(06240931) |
2019-06-25 05:06:07 |
| 89.210.161.184 | attack | [portscan] tcp/23 [TELNET] *(RWIN=40874)(06240931) |
2019-06-25 04:59:58 |
| 36.68.239.26 | attackspam | [SMB remote code execution attempt: port tcp/445] *(RWIN=8192)(06240931) |
2019-06-25 05:05:48 |
| 222.73.52.214 | attack | [SMB remote code execution attempt: port tcp/445] *(RWIN=1024)(06240931) |
2019-06-25 05:08:34 |
| 125.167.234.160 | attack | [SMB remote code execution attempt: port tcp/445] [scan/connect: 2 time(s)] *(RWIN=8192)(06240931) |
2019-06-25 04:52:27 |
| 80.178.202.253 | attack | [portscan] tcp/23 [TELNET] *(RWIN=14600)(06240931) |
2019-06-25 05:00:31 |
| 193.201.224.232 | attackspam | SSH Brute-Force reported by Fail2Ban |
2019-06-25 04:44:14 |