117.50.49.74 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Shanghai UCloud Information Technology Company Limited

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	Invalid user sysomc from 117.50.49.74 port 60203	2019-10-20 03:54:09
attack	Invalid user sysomc from 117.50.49.74 port 60203	2019-10-19 18:36:32
attack	Automatic report - SSH Brute-Force Attack	2019-10-17 16:04:52
attackspam	Sep 29 04:36:50 ny01 sshd[6299]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.49.74 Sep 29 04:36:52 ny01 sshd[6299]: Failed password for invalid user git from 117.50.49.74 port 46658 ssh2 Sep 29 04:41:48 ny01 sshd[7190]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.49.74	2019-09-29 18:59:36
attackspam	Sep 28 00:42:16 localhost sshd\[11769\]: Invalid user julien from 117.50.49.74 port 52881 Sep 28 00:42:16 localhost sshd\[11769\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.49.74 Sep 28 00:42:18 localhost sshd\[11769\]: Failed password for invalid user julien from 117.50.49.74 port 52881 ssh2	2019-09-28 06:49:33
attackbotsspam	Sep 25 22:58:53 fr01 sshd[5923]: Invalid user venkat from 117.50.49.74 Sep 25 22:58:53 fr01 sshd[5923]: Invalid user venkat from 117.50.49.74 Sep 25 22:58:53 fr01 sshd[5923]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.49.74 Sep 25 22:58:53 fr01 sshd[5923]: Invalid user venkat from 117.50.49.74 Sep 25 22:58:55 fr01 sshd[5923]: Failed password for invalid user venkat from 117.50.49.74 port 41068 ssh2 ...	2019-09-26 05:43:26
attackspam	Sep 10 17:52:02 web1 sshd\[21024\]: Invalid user sinusbot from 117.50.49.74 Sep 10 17:52:02 web1 sshd\[21024\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.49.74 Sep 10 17:52:04 web1 sshd\[21024\]: Failed password for invalid user sinusbot from 117.50.49.74 port 50555 ssh2 Sep 10 17:55:43 web1 sshd\[21377\]: Invalid user admin from 117.50.49.74 Sep 10 17:55:43 web1 sshd\[21377\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.49.74	2019-09-11 14:13:07
attackbotsspam	2019-08-02T20:32:02.579278abusebot-7.cloudsearch.cf sshd\[12494\]: Invalid user king from 117.50.49.74 port 36027	2019-08-03 04:44:51
attackbotsspam	$f2bV_matches	2019-08-02 12:43:31
attackspam	Jul 10 05:05:41 www sshd\[4629\]: Invalid user ky from 117.50.49.74 port 48144 ...	2019-07-10 12:17:43
attackbots	Jul 6 04:59:35 Proxmox sshd\[25092\]: Invalid user asteriskuser from 117.50.49.74 port 47768 Jul 6 04:59:35 Proxmox sshd\[25092\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.49.74 Jul 6 04:59:38 Proxmox sshd\[25092\]: Failed password for invalid user asteriskuser from 117.50.49.74 port 47768 ssh2	2019-07-06 11:11:56

相同子网IP讨论:

IP	类型	评论内容	时间
117.50.49.57	attack	Invalid user test2 from 117.50.49.57 port 51428	2020-10-07 02:35:32
117.50.49.57	attackspam	Invalid user test2 from 117.50.49.57 port 51428	2020-10-06 18:32:26
117.50.49.57	attack	Invalid user nina from 117.50.49.57 port 42840	2020-09-04 15:39:16
117.50.49.57	attackbotsspam	SSH Invalid Login	2020-09-04 08:00:47
117.50.49.57	attackbots	Aug 21 17:41:22 OPSO sshd\[5566\]: Invalid user @test from 117.50.49.57 port 54388 Aug 21 17:41:22 OPSO sshd\[5566\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.49.57 Aug 21 17:41:25 OPSO sshd\[5566\]: Failed password for invalid user @test from 117.50.49.57 port 54388 ssh2 Aug 21 17:44:34 OPSO sshd\[6054\]: Invalid user zk from 117.50.49.57 port 46060 Aug 21 17:44:34 OPSO sshd\[6054\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.49.57	2020-08-22 00:11:24
117.50.49.57	attack	Aug 7 18:15:51 gw1 sshd[25959]: Failed password for root from 117.50.49.57 port 57224 ssh2 ...	2020-08-07 22:14:16
117.50.49.57	attack	2020-06-29T14:23[Censored Hostname] sshd[20470]: Invalid user kevin from 117.50.49.57 port 47596 2020-06-29T14:23[Censored Hostname] sshd[20470]: Failed password for invalid user kevin from 117.50.49.57 port 47596 ssh2 2020-06-29T14:24[Censored Hostname] sshd[20834]: Invalid user vnc from 117.50.49.57 port 55088[...]	2020-07-01 22:43:38
117.50.49.57	attackbotsspam	Jun 15 12:18:49 IngegnereFirenze sshd[13742]: Failed password for invalid user uuuu from 117.50.49.57 port 42090 ssh2 ...	2020-06-15 23:45:46
117.50.49.57	attack	May 7 10:28:28 ns381471 sshd[4330]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.49.57 May 7 10:28:31 ns381471 sshd[4330]: Failed password for invalid user alin from 117.50.49.57 port 49340 ssh2	2020-05-07 19:07:55
117.50.49.57	attackspambots	May 1 03:50:00 itv-usvr-02 sshd[26791]: Invalid user ela from 117.50.49.57 port 58742 May 1 03:50:00 itv-usvr-02 sshd[26791]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.49.57 May 1 03:50:00 itv-usvr-02 sshd[26791]: Invalid user ela from 117.50.49.57 port 58742 May 1 03:50:02 itv-usvr-02 sshd[26791]: Failed password for invalid user ela from 117.50.49.57 port 58742 ssh2 May 1 03:54:16 itv-usvr-02 sshd[26895]: Invalid user flink from 117.50.49.57 port 37912	2020-05-01 05:58:28
117.50.49.57	attackspambots	Apr 24 05:51:07 v22018086721571380 sshd[32754]: Failed password for invalid user postgres from 117.50.49.57 port 35834 ssh2	2020-04-24 13:50:44
117.50.49.57	attackbots	Unauthorized connection attempt detected from IP address 117.50.49.57 to port 2220 [J]	2020-01-24 20:40:29
117.50.49.223	attackbots	Unauthorized connection attempt detected from IP address 117.50.49.223 to port 2220 [J]	2020-01-23 17:19:42
117.50.49.57	attackbotsspam	Jan 23 05:39:02 ovpn sshd\[24331\]: Invalid user scan from 117.50.49.57 Jan 23 05:39:02 ovpn sshd\[24331\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.49.57 Jan 23 05:39:04 ovpn sshd\[24331\]: Failed password for invalid user scan from 117.50.49.57 port 33892 ssh2 Jan 23 05:40:47 ovpn sshd\[24835\]: Invalid user ashley from 117.50.49.57 Jan 23 05:40:47 ovpn sshd\[24835\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.49.57	2020-01-23 15:01:42
117.50.49.57	attackbots	$f2bV_matches	2020-01-12 05:03:10

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 117.50.49.74
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 36408
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;117.50.49.74.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019070501 1800 900 604800 86400

;; Query time: 3 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sat Jul 06 11:11:48 CST 2019
;; MSG SIZE  rcvd: 116

HOST信息:

Host 74.49.50.117.in-addr.arpa not found: 2(SERVFAIL)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
*** Can't find 74.49.50.117.in-addr.arpa.: No answer

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
103.221.244.165	attackspambots	Mar 9 17:56:20 server sshd\[26761\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.221.244.165 user=root Mar 9 17:56:22 server sshd\[26761\]: Failed password for root from 103.221.244.165 port 55638 ssh2 Mar 9 18:17:26 server sshd\[330\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.221.244.165 user=root Mar 9 18:17:28 server sshd\[330\]: Failed password for root from 103.221.244.165 port 54338 ssh2 Mar 9 18:25:46 server sshd\[2575\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.221.244.165 user=root ...	2020-03-09 23:55:08
31.135.40.161	attackspambots	1583756959 - 03/09/2020 13:29:19 Host: 31.135.40.161/31.135.40.161 Port: 445 TCP Blocked	2020-03-09 23:34:27
68.183.22.85	attackspambots	Mar 9 13:44:14 serwer sshd\[19530\]: Invalid user susan from 68.183.22.85 port 35126 Mar 9 13:44:14 serwer sshd\[19530\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.22.85 Mar 9 13:44:15 serwer sshd\[19530\]: Failed password for invalid user susan from 68.183.22.85 port 35126 ssh2 ...	2020-03-09 23:39:41
104.248.142.140	attackbots	104.248.142.140 - - [09/Mar/2020:14:06:11 +0000] "POST /wp-login.php HTTP/1.1" 200 6409 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 104.248.142.140 - - [09/Mar/2020:14:06:12 +0000] "POST /xmlrpc.php HTTP/1.1" 200 403 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-03-09 23:30:59
202.191.121.66	attackbots	Unauthorized IMAP connection attempt	2020-03-10 00:11:54
78.6.178.234	attackspam	2020-03-0913:28:321jBHWJ-0002p5-Dw\<=verena@rs-solution.chH=$localhost$[37.114.132.58]:34477P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:verena@rs-solution.chS=3056id=851d81d2d9f2272b0c49ffac589f9599aaab6055@rs-solution.chT="fromAuroratojimmymackey9"forjimmymackey9@gmail.comprecastlou@comcast.net2020-03-0913:28:361jBHWN-0002pk-Vt\<=verena@rs-solution.chH=$localhost$[212.113.232.229]:52202P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:verena@rs-solution.chS=3005id=24c6640e052efb082bd523707baf96ba9973bcb368@rs-solution.chT="RecentlikefromMyrta"forah7755@gmail.comyteaq@yahoo.com2020-03-0913:29:021jBHWn-0002rn-Q8\<=verena@rs-solution.chH=$localhost$[14.162.160.169]:49235P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:verena@rs-solution.chS=3006id=003c8ad9d2f9d3db4742f458bf4b617da64232@rs-solution.chT="YouhavenewlikefromAlesia"forark_man_nelson@yahoo.compreacherman432@gmail.com2020-03-0913:28:501jBHWb-0002qd-Rp\<=verena@rs-solution.c	2020-03-09 23:40:14
5.209.29.39	attack	Email rejected due to spam filtering	2020-03-09 23:46:58
45.179.173.252	attackspam	$f2bV_matches	2020-03-09 23:41:51
94.67.58.105	attackspambots	DATE:2020-03-09 13:26:02, IP:94.67.58.105, PORT:telnet Telnet brute force auth on honeypot server (epe-honey1-hq)	2020-03-09 23:52:59
51.38.185.121	attackspambots	$f2bV_matches	2020-03-09 23:53:13
212.92.111.192	attack	RDPBruteCAu	2020-03-09 23:58:51
67.227.110.27	attackspam	Chat Spam	2020-03-09 23:38:33
198.89.92.162	attack	Lines containing failures of 198.89.92.162 Mar 9 00:20:08 shared09 sshd[9134]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=198.89.92.162 user=r.r Mar 9 00:20:10 shared09 sshd[9134]: Failed password for r.r from 198.89.92.162 port 37334 ssh2 Mar 9 00:20:10 shared09 sshd[9134]: Received disconnect from 198.89.92.162 port 37334:11: Bye Bye [preauth] Mar 9 00:20:10 shared09 sshd[9134]: Disconnected from authenticating user r.r 198.89.92.162 port 37334 [preauth] Mar 9 00:33:33 shared09 sshd[13003]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=198.89.92.162 user=r.r Mar 9 00:33:36 shared09 sshd[13003]: Failed password for r.r from 198.89.92.162 port 42402 ssh2 Mar 9 00:33:36 shared09 sshd[13003]: Received disconnect from 198.89.92.162 port 42402:11: Bye Bye [preauth] Mar 9 00:33:36 shared09 sshd[13003]: Disconnected from authenticating user r.r 198.89.92.162 port 42402 [preauth] Ma........ ------------------------------	2020-03-10 00:05:01
178.171.91.254	attackspambots	Chat Spam	2020-03-09 23:52:36
111.255.23.66	attackbots	" "	2020-03-10 00:05:36

最近上报的IP列表

171.139.210.114	150.64.29.99	102.236.88.26	69.30.209.181
232.26.32.215	52.245.254.11	36.76.144.113	145.229.67.75
79.114.57.144	85.192.128.44	163.201.21.85	229.35.109.2
112.254.10.2	193.24.146.152	126.168.66.103	249.56.24.75
109.254.39.171	45.202.181.195	207.74.166.178	60.104.233.182