117.50.49.74 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Shanghai UCloud Information Technology Company Limited

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	Invalid user sysomc from 117.50.49.74 port 60203	2019-10-20 03:54:09
attack	Invalid user sysomc from 117.50.49.74 port 60203	2019-10-19 18:36:32
attack	Automatic report - SSH Brute-Force Attack	2019-10-17 16:04:52
attackspam	Sep 29 04:36:50 ny01 sshd[6299]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.49.74 Sep 29 04:36:52 ny01 sshd[6299]: Failed password for invalid user git from 117.50.49.74 port 46658 ssh2 Sep 29 04:41:48 ny01 sshd[7190]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.49.74	2019-09-29 18:59:36
attackspam	Sep 28 00:42:16 localhost sshd\[11769\]: Invalid user julien from 117.50.49.74 port 52881 Sep 28 00:42:16 localhost sshd\[11769\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.49.74 Sep 28 00:42:18 localhost sshd\[11769\]: Failed password for invalid user julien from 117.50.49.74 port 52881 ssh2	2019-09-28 06:49:33
attackbotsspam	Sep 25 22:58:53 fr01 sshd[5923]: Invalid user venkat from 117.50.49.74 Sep 25 22:58:53 fr01 sshd[5923]: Invalid user venkat from 117.50.49.74 Sep 25 22:58:53 fr01 sshd[5923]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.49.74 Sep 25 22:58:53 fr01 sshd[5923]: Invalid user venkat from 117.50.49.74 Sep 25 22:58:55 fr01 sshd[5923]: Failed password for invalid user venkat from 117.50.49.74 port 41068 ssh2 ...	2019-09-26 05:43:26
attackspam	Sep 10 17:52:02 web1 sshd\[21024\]: Invalid user sinusbot from 117.50.49.74 Sep 10 17:52:02 web1 sshd\[21024\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.49.74 Sep 10 17:52:04 web1 sshd\[21024\]: Failed password for invalid user sinusbot from 117.50.49.74 port 50555 ssh2 Sep 10 17:55:43 web1 sshd\[21377\]: Invalid user admin from 117.50.49.74 Sep 10 17:55:43 web1 sshd\[21377\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.49.74	2019-09-11 14:13:07
attackbotsspam	2019-08-02T20:32:02.579278abusebot-7.cloudsearch.cf sshd\[12494\]: Invalid user king from 117.50.49.74 port 36027	2019-08-03 04:44:51
attackbotsspam	$f2bV_matches	2019-08-02 12:43:31
attackspam	Jul 10 05:05:41 www sshd\[4629\]: Invalid user ky from 117.50.49.74 port 48144 ...	2019-07-10 12:17:43
attackbots	Jul 6 04:59:35 Proxmox sshd\[25092\]: Invalid user asteriskuser from 117.50.49.74 port 47768 Jul 6 04:59:35 Proxmox sshd\[25092\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.49.74 Jul 6 04:59:38 Proxmox sshd\[25092\]: Failed password for invalid user asteriskuser from 117.50.49.74 port 47768 ssh2	2019-07-06 11:11:56

相同子网IP讨论:

IP	类型	评论内容	时间
117.50.49.57	attack	Invalid user test2 from 117.50.49.57 port 51428	2020-10-07 02:35:32
117.50.49.57	attackspam	Invalid user test2 from 117.50.49.57 port 51428	2020-10-06 18:32:26
117.50.49.57	attack	Invalid user nina from 117.50.49.57 port 42840	2020-09-04 15:39:16
117.50.49.57	attackbotsspam	SSH Invalid Login	2020-09-04 08:00:47
117.50.49.57	attackbots	Aug 21 17:41:22 OPSO sshd\[5566\]: Invalid user @test from 117.50.49.57 port 54388 Aug 21 17:41:22 OPSO sshd\[5566\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.49.57 Aug 21 17:41:25 OPSO sshd\[5566\]: Failed password for invalid user @test from 117.50.49.57 port 54388 ssh2 Aug 21 17:44:34 OPSO sshd\[6054\]: Invalid user zk from 117.50.49.57 port 46060 Aug 21 17:44:34 OPSO sshd\[6054\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.49.57	2020-08-22 00:11:24
117.50.49.57	attack	Aug 7 18:15:51 gw1 sshd[25959]: Failed password for root from 117.50.49.57 port 57224 ssh2 ...	2020-08-07 22:14:16
117.50.49.57	attack	2020-06-29T14:23[Censored Hostname] sshd[20470]: Invalid user kevin from 117.50.49.57 port 47596 2020-06-29T14:23[Censored Hostname] sshd[20470]: Failed password for invalid user kevin from 117.50.49.57 port 47596 ssh2 2020-06-29T14:24[Censored Hostname] sshd[20834]: Invalid user vnc from 117.50.49.57 port 55088[...]	2020-07-01 22:43:38
117.50.49.57	attackbotsspam	Jun 15 12:18:49 IngegnereFirenze sshd[13742]: Failed password for invalid user uuuu from 117.50.49.57 port 42090 ssh2 ...	2020-06-15 23:45:46
117.50.49.57	attack	May 7 10:28:28 ns381471 sshd[4330]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.49.57 May 7 10:28:31 ns381471 sshd[4330]: Failed password for invalid user alin from 117.50.49.57 port 49340 ssh2	2020-05-07 19:07:55
117.50.49.57	attackspambots	May 1 03:50:00 itv-usvr-02 sshd[26791]: Invalid user ela from 117.50.49.57 port 58742 May 1 03:50:00 itv-usvr-02 sshd[26791]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.49.57 May 1 03:50:00 itv-usvr-02 sshd[26791]: Invalid user ela from 117.50.49.57 port 58742 May 1 03:50:02 itv-usvr-02 sshd[26791]: Failed password for invalid user ela from 117.50.49.57 port 58742 ssh2 May 1 03:54:16 itv-usvr-02 sshd[26895]: Invalid user flink from 117.50.49.57 port 37912	2020-05-01 05:58:28
117.50.49.57	attackspambots	Apr 24 05:51:07 v22018086721571380 sshd[32754]: Failed password for invalid user postgres from 117.50.49.57 port 35834 ssh2	2020-04-24 13:50:44
117.50.49.57	attackbots	Unauthorized connection attempt detected from IP address 117.50.49.57 to port 2220 [J]	2020-01-24 20:40:29
117.50.49.223	attackbots	Unauthorized connection attempt detected from IP address 117.50.49.223 to port 2220 [J]	2020-01-23 17:19:42
117.50.49.57	attackbotsspam	Jan 23 05:39:02 ovpn sshd\[24331\]: Invalid user scan from 117.50.49.57 Jan 23 05:39:02 ovpn sshd\[24331\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.49.57 Jan 23 05:39:04 ovpn sshd\[24331\]: Failed password for invalid user scan from 117.50.49.57 port 33892 ssh2 Jan 23 05:40:47 ovpn sshd\[24835\]: Invalid user ashley from 117.50.49.57 Jan 23 05:40:47 ovpn sshd\[24835\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.49.57	2020-01-23 15:01:42
117.50.49.57	attackbots	$f2bV_matches	2020-01-12 05:03:10

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 117.50.49.74
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 36408
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;117.50.49.74.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019070501 1800 900 604800 86400

;; Query time: 3 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sat Jul 06 11:11:48 CST 2019
;; MSG SIZE  rcvd: 116

HOST信息:

Host 74.49.50.117.in-addr.arpa not found: 2(SERVFAIL)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
*** Can't find 74.49.50.117.in-addr.arpa.: No answer

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
203.148.87.179	attackspam	SSH Brute-Forcing (server2)	2020-08-02 17:26:26
49.233.213.214	attack	fail2ban -- 49.233.213.214 ...	2020-08-02 17:29:02
87.246.7.136	attackbots	failed_logins	2020-08-02 17:47:56
178.128.72.84	attack	Aug 2 05:37:36 h2646465 sshd[880]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.72.84 user=root Aug 2 05:37:39 h2646465 sshd[880]: Failed password for root from 178.128.72.84 port 59668 ssh2 Aug 2 05:43:30 h2646465 sshd[1708]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.72.84 user=root Aug 2 05:43:32 h2646465 sshd[1708]: Failed password for root from 178.128.72.84 port 55096 ssh2 Aug 2 05:45:15 h2646465 sshd[2234]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.72.84 user=root Aug 2 05:45:16 h2646465 sshd[2234]: Failed password for root from 178.128.72.84 port 50842 ssh2 Aug 2 05:46:57 h2646465 sshd[2271]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.72.84 user=root Aug 2 05:46:59 h2646465 sshd[2271]: Failed password for root from 178.128.72.84 port 46588 ssh2 Aug 2 05:48:37 h2646465 sshd[2328]: p	2020-08-02 17:29:23
73.15.175.86	attackbots	Aug 2 07:47:18 cdc sshd[8722]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=73.15.175.86 user=pi Aug 2 07:47:20 cdc sshd[8722]: Failed password for invalid user pi from 73.15.175.86 port 49684 ssh2	2020-08-02 17:40:51
87.251.74.182	attackspambots	Aug 2 11:31:36 debian-2gb-nbg1-2 kernel: \[18619172.514497\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=87.251.74.182 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=245 ID=11440 PROTO=TCP SPT=41972 DPT=4661 WINDOW=1024 RES=0x00 SYN URGP=0	2020-08-02 17:52:35
157.230.151.241	attackspam	(sshd) Failed SSH login from 157.230.151.241 (US/United States/-): 5 in the last 3600 secs	2020-08-02 17:26:41
176.110.42.161	attack	Aug 2 10:07:42 root sshd[3951]: Failed password for root from 176.110.42.161 port 51582 ssh2 Aug 2 10:08:22 root sshd[4101]: Failed password for root from 176.110.42.161 port 59464 ssh2 ...	2020-08-02 17:36:19
222.173.12.35	attackspam	Aug 2 11:20:17 santamaria sshd\[22046\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.173.12.35 user=root Aug 2 11:20:19 santamaria sshd\[22046\]: Failed password for root from 222.173.12.35 port 33584 ssh2 Aug 2 11:23:50 santamaria sshd\[22107\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.173.12.35 user=root ...	2020-08-02 17:37:27
103.100.209.172	attackbotsspam	$f2bV_matches	2020-08-02 17:29:40
104.248.88.100	attackbots	CMS (WordPress or Joomla) login attempt.	2020-08-02 17:34:58
37.255.182.108	attackbots	Brute forcing RDP port 3389	2020-08-02 17:26:00
66.79.188.23	attack	Aug 1 07:20:54 debian-4gb-nbg1-mysql sshd[17166]: Failed password for r.r from 66.79.188.23 port 37506 ssh2 Aug 1 07:24:57 debian-4gb-nbg1-mysql sshd[17195]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=66.79.188.23 user=r.r Aug 1 07:24:59 debian-4gb-nbg1-mysql sshd[17195]: Failed password for r.r from 66.79.188.23 port 53924 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=66.79.188.23	2020-08-02 17:20:49
122.144.131.75	attack	IP 122.144.131.75 attacked honeypot on port: 1433 at 8/1/2020 8:47:54 PM	2020-08-02 17:33:37
49.234.18.158	attackbotsspam	Invalid user jiawen from 49.234.18.158 port 39000	2020-08-02 17:42:40

最近上报的IP列表

171.139.210.114	150.64.29.99	102.236.88.26	69.30.209.181
232.26.32.215	52.245.254.11	36.76.144.113	145.229.67.75
79.114.57.144	85.192.128.44	163.201.21.85	229.35.109.2
112.254.10.2	193.24.146.152	126.168.66.103	249.56.24.75
109.254.39.171	45.202.181.195	207.74.166.178	60.104.233.182