117.50.49.223 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Shanghai UCloud Information Technology Company Limited

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	Unauthorized connection attempt detected from IP address 117.50.49.223 to port 2220 [J]	2020-01-23 17:19:42
attackbots	Jan 2 00:34:59 server sshd[44133]: Failed password for invalid user volumio from 117.50.49.223 port 55522 ssh2 Jan 2 00:47:53 server sshd[44716]: Failed password for root from 117.50.49.223 port 55746 ssh2 Jan 2 00:49:41 server sshd[44757]: Failed password for invalid user westerlund from 117.50.49.223 port 39118 ssh2	2020-01-02 08:51:44
attackspambots	Dec 27 00:45:37 MK-Soft-Root1 sshd[27201]: Failed password for root from 117.50.49.223 port 50770 ssh2 ...	2019-12-27 08:39:09
attackspam	Dec 26 03:18:55 vps46666688 sshd[9186]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.49.223 Dec 26 03:18:57 vps46666688 sshd[9186]: Failed password for invalid user hegner from 117.50.49.223 port 39782 ssh2 ...	2019-12-26 22:40:20
attack	Dec 18 15:50:22 meumeu sshd[502]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.49.223 Dec 18 15:50:24 meumeu sshd[502]: Failed password for invalid user pussy from 117.50.49.223 port 51914 ssh2 Dec 18 15:56:27 meumeu sshd[1459]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.49.223 ...	2019-12-18 22:59:55
attack	SSH Brute-Forcing (server2)	2019-12-15 17:28:23
attackbotsspam	Dec 9 16:21:59 vps691689 sshd[24142]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.49.223 Dec 9 16:22:00 vps691689 sshd[24142]: Failed password for invalid user chunkin from 117.50.49.223 port 53712 ssh2 ...	2019-12-09 23:35:30
attackbotsspam	Dec 6 01:28:35 v22018086721571380 sshd[4866]: Failed password for invalid user kononenko from 117.50.49.223 port 35508 ssh2	2019-12-06 08:42:26
attack	Dec 3 16:48:39 lnxded64 sshd[1237]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.49.223	2019-12-04 05:35:01
attackspam	Dec 3 14:10:29 lnxded64 sshd[26305]: Failed password for root from 117.50.49.223 port 44044 ssh2 Dec 3 14:10:29 lnxded64 sshd[26305]: Failed password for root from 117.50.49.223 port 44044 ssh2 Dec 3 14:17:04 lnxded64 sshd[27877]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.49.223	2019-12-03 21:28:49
attackspam	Nov 29 00:46:22 zulu1842 sshd[8319]: Invalid user scaner from 117.50.49.223 Nov 29 00:46:22 zulu1842 sshd[8319]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.49.223 Nov 29 00:46:24 zulu1842 sshd[8319]: Failed password for invalid user scaner from 117.50.49.223 port 48502 ssh2 Nov 29 00:46:24 zulu1842 sshd[8319]: Received disconnect from 117.50.49.223: 11: Bye Bye [preauth] Nov 29 08:12:49 zulu1842 sshd[11600]: Invalid user thirugnanam from 117.50.49.223 Nov 29 08:12:49 zulu1842 sshd[11600]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.49.223 Nov 29 08:12:51 zulu1842 sshd[11600]: Failed password for invalid user thirugnanam from 117.50.49.223 port 56208 ssh2 Nov 29 08:12:51 zulu1842 sshd[11600]: Received disconnect from 117.50.49.223: 11: Bye Bye [preauth] Nov 29 08:17:27 zulu1842 sshd[12060]: Invalid user blumhagen from 117.50.49.223 Nov 29 08:17:27 zulu1842 sshd[12060]........ -------------------------------	2019-12-01 17:06:17

相同子网IP讨论:

IP	类型	评论内容	时间
117.50.49.57	attack	Invalid user test2 from 117.50.49.57 port 51428	2020-10-07 02:35:32
117.50.49.57	attackspam	Invalid user test2 from 117.50.49.57 port 51428	2020-10-06 18:32:26
117.50.49.57	attack	Invalid user nina from 117.50.49.57 port 42840	2020-09-04 15:39:16
117.50.49.57	attackbotsspam	SSH Invalid Login	2020-09-04 08:00:47
117.50.49.57	attackbots	Aug 21 17:41:22 OPSO sshd\[5566\]: Invalid user @test from 117.50.49.57 port 54388 Aug 21 17:41:22 OPSO sshd\[5566\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.49.57 Aug 21 17:41:25 OPSO sshd\[5566\]: Failed password for invalid user @test from 117.50.49.57 port 54388 ssh2 Aug 21 17:44:34 OPSO sshd\[6054\]: Invalid user zk from 117.50.49.57 port 46060 Aug 21 17:44:34 OPSO sshd\[6054\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.49.57	2020-08-22 00:11:24
117.50.49.57	attack	Aug 7 18:15:51 gw1 sshd[25959]: Failed password for root from 117.50.49.57 port 57224 ssh2 ...	2020-08-07 22:14:16
117.50.49.57	attack	2020-06-29T14:23[Censored Hostname] sshd[20470]: Invalid user kevin from 117.50.49.57 port 47596 2020-06-29T14:23[Censored Hostname] sshd[20470]: Failed password for invalid user kevin from 117.50.49.57 port 47596 ssh2 2020-06-29T14:24[Censored Hostname] sshd[20834]: Invalid user vnc from 117.50.49.57 port 55088[...]	2020-07-01 22:43:38
117.50.49.57	attackbotsspam	Jun 15 12:18:49 IngegnereFirenze sshd[13742]: Failed password for invalid user uuuu from 117.50.49.57 port 42090 ssh2 ...	2020-06-15 23:45:46
117.50.49.57	attack	May 7 10:28:28 ns381471 sshd[4330]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.49.57 May 7 10:28:31 ns381471 sshd[4330]: Failed password for invalid user alin from 117.50.49.57 port 49340 ssh2	2020-05-07 19:07:55
117.50.49.57	attackspambots	May 1 03:50:00 itv-usvr-02 sshd[26791]: Invalid user ela from 117.50.49.57 port 58742 May 1 03:50:00 itv-usvr-02 sshd[26791]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.49.57 May 1 03:50:00 itv-usvr-02 sshd[26791]: Invalid user ela from 117.50.49.57 port 58742 May 1 03:50:02 itv-usvr-02 sshd[26791]: Failed password for invalid user ela from 117.50.49.57 port 58742 ssh2 May 1 03:54:16 itv-usvr-02 sshd[26895]: Invalid user flink from 117.50.49.57 port 37912	2020-05-01 05:58:28
117.50.49.57	attackspambots	Apr 24 05:51:07 v22018086721571380 sshd[32754]: Failed password for invalid user postgres from 117.50.49.57 port 35834 ssh2	2020-04-24 13:50:44
117.50.49.57	attackbots	Unauthorized connection attempt detected from IP address 117.50.49.57 to port 2220 [J]	2020-01-24 20:40:29
117.50.49.57	attackbotsspam	Jan 23 05:39:02 ovpn sshd\[24331\]: Invalid user scan from 117.50.49.57 Jan 23 05:39:02 ovpn sshd\[24331\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.49.57 Jan 23 05:39:04 ovpn sshd\[24331\]: Failed password for invalid user scan from 117.50.49.57 port 33892 ssh2 Jan 23 05:40:47 ovpn sshd\[24835\]: Invalid user ashley from 117.50.49.57 Jan 23 05:40:47 ovpn sshd\[24835\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.49.57	2020-01-23 15:01:42
117.50.49.57	attackbots	$f2bV_matches	2020-01-12 05:03:10
117.50.49.57	attackspam	Dec 23 15:52:37 h2177944 sshd\[1524\]: Invalid user password111 from 117.50.49.57 port 58600 Dec 23 15:52:37 h2177944 sshd\[1524\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.49.57 Dec 23 15:52:39 h2177944 sshd\[1524\]: Failed password for invalid user password111 from 117.50.49.57 port 58600 ssh2 Dec 23 15:58:38 h2177944 sshd\[1706\]: Invalid user 5t6y7u from 117.50.49.57 port 38738 Dec 23 15:58:38 h2177944 sshd\[1706\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.49.57 ...	2019-12-24 00:46:14

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 117.50.49.223
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 40784
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;117.50.49.223.			IN	A

;; AUTHORITY SECTION:
.			582	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019120100 1800 900 604800 86400

;; Query time: 135 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Dec 01 17:06:12 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

Host 223.49.50.117.in-addr.arpa not found: 2(SERVFAIL)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
*** Can't find 223.49.50.117.in-addr.arpa.: No answer

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
114.235.163.197	attack	Aug 6 15:16:08 mxgate1 postfix/postscreen[23021]: CONNECT from [114.235.163.197]:3407 to [176.31.12.44]:25 Aug 6 15:16:08 mxgate1 postfix/dnsblog[23024]: addr 114.235.163.197 listed by domain cbl.abuseat.org as 127.0.0.2 Aug 6 15:16:08 mxgate1 postfix/dnsblog[23022]: addr 114.235.163.197 listed by domain zen.spamhaus.org as 127.0.0.4 Aug 6 15:16:08 mxgate1 postfix/dnsblog[23022]: addr 114.235.163.197 listed by domain zen.spamhaus.org as 127.0.0.11 Aug 6 15:16:08 mxgate1 postfix/dnsblog[23026]: addr 114.235.163.197 listed by domain b.barracudacentral.org as 127.0.0.2 Aug 6 15:16:14 mxgate1 postfix/postscreen[23021]: DNSBL rank 4 for [114.235.163.197]:3407 Aug x@x Aug 6 15:16:16 mxgate1 postfix/postscreen[23021]: DISCONNECT [114.235.163.197]:3407 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=114.235.163.197	2020-08-07 02:11:37
133.130.102.148	attackspambots	Too many connections or unauthorized access detected from Arctic banned ip	2020-08-07 02:41:03
97.121.238.119	attack	Aug 6 15:21:16 debian-2gb-nbg1-2 kernel: \[18978532.046023\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=97.121.238.119 DST=195.201.40.59 LEN=44 TOS=0x00 PREC=0x00 TTL=50 ID=22120 PROTO=TCP SPT=18420 DPT=9530 WINDOW=54517 RES=0x00 SYN URGP=0	2020-08-07 02:34:02
1.10.198.52	attackbots	1596720109 - 08/06/2020 15:21:49 Host: 1.10.198.52/1.10.198.52 Port: 445 TCP Blocked	2020-08-07 02:09:24
193.95.24.114	attackspam	Aug 6 17:38:21 ns381471 sshd[18987]: Failed password for root from 193.95.24.114 port 56737 ssh2	2020-08-07 02:40:39
13.67.110.14	attackspambots	Malicious/Probing: /.env	2020-08-07 02:21:54
103.242.56.182	attackspam	$f2bV_matches	2020-08-07 02:23:31
193.148.70.216	attackbots	Aug 6 18:26:14 hidden sshd[28815]: Failed password for hidden from 193.148.70.216 port 33542 ssh2 Aug 6 18:34:20 hidden sshd[48231]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.148.70.216 user=root Aug 6 18:34:22 hidden sshd[48231]: Failed password for hidden from 193.148.70.216 port 45248 ssh2 Aug 6 18:42:13 hidden sshd[2419]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.148.70.216 user=root Aug 6 18:42:14 hidden sshd[2419]: Failed password for hidden from 193.148.70.216 port 56948 ssh2	2020-08-07 02:28:02
49.234.119.29	attackbots	Lines containing failures of 49.234.119.29 Aug 4 11:39:03 penfold sshd[21688]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.119.29 user=r.r Aug 4 11:39:06 penfold sshd[21688]: Failed password for r.r from 49.234.119.29 port 59622 ssh2 Aug 4 11:39:08 penfold sshd[21688]: Received disconnect from 49.234.119.29 port 59622:11: Bye Bye [preauth] Aug 4 11:39:08 penfold sshd[21688]: Disconnected from authenticating user r.r 49.234.119.29 port 59622 [preauth] Aug 4 11:43:36 penfold sshd[22053]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.119.29 user=r.r Aug 4 11:43:38 penfold sshd[22053]: Failed password for r.r from 49.234.119.29 port 40376 ssh2 Aug 4 11:43:39 penfold sshd[22053]: Received disconnect from 49.234.119.29 port 40376:11: Bye Bye [preauth] Aug 4 11:43:39 penfold sshd[22053]: Disconnected from authenticating user r.r 49.234.119.29 port 40376 [preauth] Aug 4........ ------------------------------	2020-08-07 02:08:58
112.111.249.31	attack	Aug 6 03:14:29 web9 sshd\[9595\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.111.249.31 user=root Aug 6 03:14:32 web9 sshd\[9595\]: Failed password for root from 112.111.249.31 port 55282 ssh2 Aug 6 03:18:06 web9 sshd\[10079\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.111.249.31 user=root Aug 6 03:18:08 web9 sshd\[10079\]: Failed password for root from 112.111.249.31 port 38410 ssh2 Aug 6 03:21:39 web9 sshd\[10531\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.111.249.31 user=root	2020-08-07 02:15:31
195.54.160.38	attack	Aug 6 19:54:44 debian-2gb-nbg1-2 kernel: \[18994939.818441\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=195.54.160.38 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=245 ID=22260 PROTO=TCP SPT=49673 DPT=50091 WINDOW=1024 RES=0x00 SYN URGP=0	2020-08-07 02:19:29
213.217.0.7	attack	WordPress XMLRPC scan :: 213.217.0.7 0.116 - [06/Aug/2020:16:07:07 0000] www.[censored_1] "POST //xmlrpc.php HTTP/1.1" 200 217 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" "HTTP/1.1"	2020-08-07 02:37:52
193.176.86.170	attack	0,16-16/25 [bc05/m64] PostRequest-Spammer scoring: zurich	2020-08-07 02:39:41
34.89.247.194	attackbotsspam	06.08.2020 15:22:00 - Bad Robot Ignore Robots.txt	2020-08-07 02:07:10
98.244.68.232	attack	port scan and connect, tcp 443 (https)	2020-08-07 02:31:08

最近上报的IP列表

187.73.22.1	39.102.56.41	131.219.167.57	202.81.56.122
107.238.72.34	108.29.250.188	172.157.180.65	140.238.199.165
32.73.208.15	78.38.51.153	154.0.108.160	168.13.37.254
88.59.94.161	77.170.245.12	105.45.153.206	51.215.119.152
95.168.180.186	45.141.86.151	39.123.97.55	61.150.95.53