117.50.7.14 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Shanghai UCloud Information Technology Company Limited

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	SSH login attempts.	2020-10-04 04:05:35
attack	SSH login attempts.	2020-10-03 20:07:49
attack	Sep 28 19:00:26 firewall sshd[16934]: Failed password for invalid user nagios1 from 117.50.7.14 port 36469 ssh2 Sep 28 19:04:10 firewall sshd[16993]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.7.14 user=root Sep 28 19:04:12 firewall sshd[16993]: Failed password for root from 117.50.7.14 port 34164 ssh2 ...	2020-09-29 06:19:57
attackspam	2020-09-28T05:49:06.897268randservbullet-proofcloud-66.localdomain sshd[25781]: Invalid user arief from 117.50.7.14 port 34056 2020-09-28T05:49:06.901931randservbullet-proofcloud-66.localdomain sshd[25781]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.7.14 2020-09-28T05:49:06.897268randservbullet-proofcloud-66.localdomain sshd[25781]: Invalid user arief from 117.50.7.14 port 34056 2020-09-28T05:49:08.717613randservbullet-proofcloud-66.localdomain sshd[25781]: Failed password for invalid user arief from 117.50.7.14 port 34056 ssh2 ...	2020-09-28 14:50:21
attack	Coordinated SSH brute-force attack from different IPs. pam_unix(sshd:auth): user=root	2020-09-25 05:26:35
attackbots	SSH brutforce	2020-09-24 23:52:21
attackbots	Invalid user wang from 117.50.7.14 port 10993	2020-09-24 15:37:44
attackbots	Invalid user wang from 117.50.7.14 port 51776	2020-09-24 07:02:42
attackbots	(sshd) Failed SSH login from 117.50.7.14 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 18 07:13:57 optimus sshd[29150]: Invalid user saed2 from 117.50.7.14 Sep 18 07:13:57 optimus sshd[29150]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.7.14 Sep 18 07:13:59 optimus sshd[29150]: Failed password for invalid user saed2 from 117.50.7.14 port 19216 ssh2 Sep 18 07:16:22 optimus sshd[29729]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.7.14 user=root Sep 18 07:16:25 optimus sshd[29729]: Failed password for root from 117.50.7.14 port 56852 ssh2	2020-09-18 23:16:52
attackbotsspam	Sep 18 04:42:59 prod4 sshd\[11431\]: Failed password for root from 117.50.7.14 port 24348 ssh2 Sep 18 04:51:55 prod4 sshd\[14278\]: Invalid user sh from 117.50.7.14 Sep 18 04:51:57 prod4 sshd\[14278\]: Failed password for invalid user sh from 117.50.7.14 port 18620 ssh2 ...	2020-09-18 15:27:32
attackspambots	Sep 18 02:17:43 webhost01 sshd[10414]: Failed password for root from 117.50.7.14 port 5951 ssh2 Sep 18 02:21:15 webhost01 sshd[10477]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.7.14 ...	2020-09-18 05:43:13
attackbotsspam	Invalid user te from 117.50.7.14 port 37374	2020-08-30 02:04:22
attack	20 attempts against mh-ssh on cloud	2020-08-24 01:51:23
attackspam	Jul 31 14:01:17 server sshd[25116]: Failed password for root from 117.50.7.14 port 59228 ssh2 Jul 31 14:04:49 server sshd[26240]: Failed password for root from 117.50.7.14 port 39857 ssh2 Jul 31 14:08:16 server sshd[27367]: Failed password for root from 117.50.7.14 port 20480 ssh2	2020-07-31 22:51:59
attackbotsspam	$f2bV_matches	2020-07-29 03:28:14
attackspambots	Jul 22 16:50:55 PorscheCustomer sshd[1755]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.7.14 Jul 22 16:50:57 PorscheCustomer sshd[1755]: Failed password for invalid user odoo from 117.50.7.14 port 63297 ssh2 Jul 22 16:52:36 PorscheCustomer sshd[1816]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.7.14 ...	2020-07-22 23:13:07
attackspam	Jul 20 03:55:19 ws26vmsma01 sshd[118795]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.7.14 Jul 20 03:55:21 ws26vmsma01 sshd[118795]: Failed password for invalid user ph from 117.50.7.14 port 48136 ssh2 ...	2020-07-20 14:06:02

相同子网IP讨论:

IP	类型	评论内容	时间
117.50.77.220	attack	$f2bV_matches	2020-09-21 23:52:57
117.50.77.220	attackspambots	Sep 21 04:52:17 eventyay sshd[7607]: Failed password for root from 117.50.77.220 port 11988 ssh2 Sep 21 04:54:54 eventyay sshd[7725]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.77.220 Sep 21 04:54:56 eventyay sshd[7725]: Failed password for invalid user deployer from 117.50.77.220 port 44032 ssh2 ...	2020-09-21 15:35:44
117.50.77.220	attackspam	invalid user student1 from 117.50.77.220 port 47456 ssh2	2020-09-21 07:29:52
117.50.77.220	attackbots	Aug 26 22:50:47 [host] sshd[29051]: pam_unix(sshd: Aug 26 22:50:49 [host] sshd[29051]: Failed passwor Aug 26 22:52:19 [host] sshd[29096]: pam_unix(sshd:	2020-08-27 06:40:41
117.50.7.159	attack	Unauthorized connection attempt detected from IP address 117.50.7.159 to port 80 [T]	2020-08-16 02:49:13
117.50.77.220	attackspam	2020-07-26T19:48:54.946914ks3355764 sshd[6325]: Invalid user hiw from 117.50.77.220 port 32237 2020-07-26T19:48:56.963339ks3355764 sshd[6325]: Failed password for invalid user hiw from 117.50.77.220 port 32237 ssh2 ...	2020-07-27 03:32:39
117.50.77.220	attackspam	Jul 12 19:15:37 server sshd[32171]: Failed password for invalid user kettle from 117.50.77.220 port 63921 ssh2 Jul 12 19:24:38 server sshd[41592]: Failed password for invalid user rahul from 117.50.77.220 port 19847 ssh2 Jul 12 19:26:42 server sshd[43726]: Failed password for invalid user hand from 117.50.77.220 port 39227 ssh2	2020-07-13 01:39:18
117.50.77.220	attack	Jun 23 06:44:39 lukav-desktop sshd\[9221\]: Invalid user postgres from 117.50.77.220 Jun 23 06:44:39 lukav-desktop sshd\[9221\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.77.220 Jun 23 06:44:41 lukav-desktop sshd\[9221\]: Failed password for invalid user postgres from 117.50.77.220 port 38534 ssh2 Jun 23 06:49:24 lukav-desktop sshd\[9277\]: Invalid user do from 117.50.77.220 Jun 23 06:49:24 lukav-desktop sshd\[9277\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.77.220	2020-06-23 19:02:40
117.50.77.220	attack	Invalid user jayz from 117.50.77.220 port 22443	2020-06-12 19:24:11
117.50.77.220	attack	Jun 7 03:11:22 php1 sshd\[5589\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.77.220 user=root Jun 7 03:11:25 php1 sshd\[5589\]: Failed password for root from 117.50.77.220 port 23945 ssh2 Jun 7 03:14:38 php1 sshd\[5816\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.77.220 user=root Jun 7 03:14:40 php1 sshd\[5816\]: Failed password for root from 117.50.77.220 port 61779 ssh2 Jun 7 03:17:54 php1 sshd\[6043\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.77.220 user=root	2020-06-08 02:58:32
117.50.7.159	attack	Unauthorized connection attempt detected from IP address 117.50.7.159 to port 1080	2020-06-05 07:26:48
117.50.7.253	attackbotsspam	May 30 13:10:42 mail sshd[20526]: Failed password for root from 117.50.7.253 port 43474 ssh2 ...	2020-06-01 20:57:28
117.50.7.159	attackspam	port scan and connect, tcp 81 (hosts2-ns)	2020-05-31 22:50:54
117.50.71.169	attack	May 11 14:43:40 localhost sshd\[11907\]: Invalid user oracle from 117.50.71.169 May 11 14:43:40 localhost sshd\[11907\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.71.169 May 11 14:43:41 localhost sshd\[11907\]: Failed password for invalid user oracle from 117.50.71.169 port 46890 ssh2 May 11 14:46:47 localhost sshd\[12187\]: Invalid user write from 117.50.71.169 May 11 14:46:47 localhost sshd\[12187\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.71.169 ...	2020-05-11 20:59:35
117.50.71.169	attackbotsspam	May 9 03:39:29 h1745522 sshd[17132]: Invalid user nmp from 117.50.71.169 port 42110 May 9 03:39:29 h1745522 sshd[17132]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.71.169 May 9 03:39:29 h1745522 sshd[17132]: Invalid user nmp from 117.50.71.169 port 42110 May 9 03:39:31 h1745522 sshd[17132]: Failed password for invalid user nmp from 117.50.71.169 port 42110 ssh2 May 9 03:43:23 h1745522 sshd[17270]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.71.169 user=root May 9 03:43:26 h1745522 sshd[17270]: Failed password for root from 117.50.71.169 port 57528 ssh2 May 9 03:47:47 h1745522 sshd[17357]: Invalid user moses from 117.50.71.169 port 44712 May 9 03:47:47 h1745522 sshd[17357]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.71.169 May 9 03:47:47 h1745522 sshd[17357]: Invalid user moses from 117.50.71.169 port 44712 May 9 03:47:49 h ...	2020-05-09 19:31:10

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 117.50.7.14
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 10779
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;117.50.7.14.			IN	A

;; AUTHORITY SECTION:
.			586	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020072000 1800 900 604800 86400

;; Query time: 51 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Jul 20 14:05:57 CST 2020
;; MSG SIZE  rcvd: 115

HOST信息:

Host 14.7.50.117.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 14.7.50.117.in-addr.arpa: NXDOMAIN

IP	类型	评论内容	时间
73.23.63.192	attackspambots	Port Scan: UDP/465	2019-09-20 21:53:20
36.233.66.194	attack	Port Scan: TCP/23	2019-09-20 22:21:09
71.231.215.219	attackspam	Port Scan: UDP/80	2019-09-20 21:54:15
23.247.98.162	attackbots	Port Scan: TCP/25	2019-09-20 22:04:10
134.73.88.227	attackspambots	Port Scan: TCP/25	2019-09-20 22:12:46
67.53.63.106	attackspam	Port Scan: UDP/137	2019-09-20 22:17:19
50.84.241.222	attack	Port Scan: UDP/137	2019-09-20 21:59:28
51.158.24.52	attack	Port Scan: UDP/53	2019-09-20 21:35:07
92.53.65.52	attack	Port Scan: TCP/55062	2019-09-20 21:51:16
76.170.87.168	attackbotsspam	Port Scan: UDP/137	2019-09-20 22:16:25
159.65.130.221	attackbotsspam	Port Scan: TCP/35927	2019-09-20 22:11:26
157.55.39.236	attack	Automatic report - Banned IP Access	2019-09-20 21:44:12
37.147.171.224	attack	Port Scan: TCP/445	2019-09-20 22:20:49
8.28.49.1	attack	Port Scan: UDP/137	2019-09-20 22:05:01
67.79.51.11	attack	Port Scan: UDP/137	2019-09-20 22:16:54

最近上报的IP列表

32.43.246.139	204.132.178.30	177.93.191.216	120.7.149.50
185.158.114.43	237.206.234.74	134.122.29.46	112.201.169.105
32.39.86.185	114.203.1.152	124.77.88.79	103.108.187.100
51.75.210.219	27.114.132.61	233.26.100.208	201.206.69.237
10.54.70.71	232.52.53.191	194.116.236.208	125.164.21.182