117.50.7.14 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Shanghai UCloud Information Technology Company Limited

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	SSH login attempts.	2020-10-04 04:05:35
attack	SSH login attempts.	2020-10-03 20:07:49
attack	Sep 28 19:00:26 firewall sshd[16934]: Failed password for invalid user nagios1 from 117.50.7.14 port 36469 ssh2 Sep 28 19:04:10 firewall sshd[16993]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.7.14 user=root Sep 28 19:04:12 firewall sshd[16993]: Failed password for root from 117.50.7.14 port 34164 ssh2 ...	2020-09-29 06:19:57
attackspam	2020-09-28T05:49:06.897268randservbullet-proofcloud-66.localdomain sshd[25781]: Invalid user arief from 117.50.7.14 port 34056 2020-09-28T05:49:06.901931randservbullet-proofcloud-66.localdomain sshd[25781]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.7.14 2020-09-28T05:49:06.897268randservbullet-proofcloud-66.localdomain sshd[25781]: Invalid user arief from 117.50.7.14 port 34056 2020-09-28T05:49:08.717613randservbullet-proofcloud-66.localdomain sshd[25781]: Failed password for invalid user arief from 117.50.7.14 port 34056 ssh2 ...	2020-09-28 14:50:21
attack	Coordinated SSH brute-force attack from different IPs. pam_unix(sshd:auth): user=root	2020-09-25 05:26:35
attackbots	SSH brutforce	2020-09-24 23:52:21
attackbots	Invalid user wang from 117.50.7.14 port 10993	2020-09-24 15:37:44
attackbots	Invalid user wang from 117.50.7.14 port 51776	2020-09-24 07:02:42
attackbots	(sshd) Failed SSH login from 117.50.7.14 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 18 07:13:57 optimus sshd[29150]: Invalid user saed2 from 117.50.7.14 Sep 18 07:13:57 optimus sshd[29150]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.7.14 Sep 18 07:13:59 optimus sshd[29150]: Failed password for invalid user saed2 from 117.50.7.14 port 19216 ssh2 Sep 18 07:16:22 optimus sshd[29729]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.7.14 user=root Sep 18 07:16:25 optimus sshd[29729]: Failed password for root from 117.50.7.14 port 56852 ssh2	2020-09-18 23:16:52
attackbotsspam	Sep 18 04:42:59 prod4 sshd\[11431\]: Failed password for root from 117.50.7.14 port 24348 ssh2 Sep 18 04:51:55 prod4 sshd\[14278\]: Invalid user sh from 117.50.7.14 Sep 18 04:51:57 prod4 sshd\[14278\]: Failed password for invalid user sh from 117.50.7.14 port 18620 ssh2 ...	2020-09-18 15:27:32
attackspambots	Sep 18 02:17:43 webhost01 sshd[10414]: Failed password for root from 117.50.7.14 port 5951 ssh2 Sep 18 02:21:15 webhost01 sshd[10477]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.7.14 ...	2020-09-18 05:43:13
attackbotsspam	Invalid user te from 117.50.7.14 port 37374	2020-08-30 02:04:22
attack	20 attempts against mh-ssh on cloud	2020-08-24 01:51:23
attackspam	Jul 31 14:01:17 server sshd[25116]: Failed password for root from 117.50.7.14 port 59228 ssh2 Jul 31 14:04:49 server sshd[26240]: Failed password for root from 117.50.7.14 port 39857 ssh2 Jul 31 14:08:16 server sshd[27367]: Failed password for root from 117.50.7.14 port 20480 ssh2	2020-07-31 22:51:59
attackbotsspam	$f2bV_matches	2020-07-29 03:28:14
attackspambots	Jul 22 16:50:55 PorscheCustomer sshd[1755]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.7.14 Jul 22 16:50:57 PorscheCustomer sshd[1755]: Failed password for invalid user odoo from 117.50.7.14 port 63297 ssh2 Jul 22 16:52:36 PorscheCustomer sshd[1816]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.7.14 ...	2020-07-22 23:13:07
attackspam	Jul 20 03:55:19 ws26vmsma01 sshd[118795]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.7.14 Jul 20 03:55:21 ws26vmsma01 sshd[118795]: Failed password for invalid user ph from 117.50.7.14 port 48136 ssh2 ...	2020-07-20 14:06:02

相同子网IP讨论:

IP	类型	评论内容	时间
117.50.77.220	attack	$f2bV_matches	2020-09-21 23:52:57
117.50.77.220	attackspambots	Sep 21 04:52:17 eventyay sshd[7607]: Failed password for root from 117.50.77.220 port 11988 ssh2 Sep 21 04:54:54 eventyay sshd[7725]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.77.220 Sep 21 04:54:56 eventyay sshd[7725]: Failed password for invalid user deployer from 117.50.77.220 port 44032 ssh2 ...	2020-09-21 15:35:44
117.50.77.220	attackspam	invalid user student1 from 117.50.77.220 port 47456 ssh2	2020-09-21 07:29:52
117.50.77.220	attackbots	Aug 26 22:50:47 [host] sshd[29051]: pam_unix(sshd: Aug 26 22:50:49 [host] sshd[29051]: Failed passwor Aug 26 22:52:19 [host] sshd[29096]: pam_unix(sshd:	2020-08-27 06:40:41
117.50.7.159	attack	Unauthorized connection attempt detected from IP address 117.50.7.159 to port 80 [T]	2020-08-16 02:49:13
117.50.77.220	attackspam	2020-07-26T19:48:54.946914ks3355764 sshd[6325]: Invalid user hiw from 117.50.77.220 port 32237 2020-07-26T19:48:56.963339ks3355764 sshd[6325]: Failed password for invalid user hiw from 117.50.77.220 port 32237 ssh2 ...	2020-07-27 03:32:39
117.50.77.220	attackspam	Jul 12 19:15:37 server sshd[32171]: Failed password for invalid user kettle from 117.50.77.220 port 63921 ssh2 Jul 12 19:24:38 server sshd[41592]: Failed password for invalid user rahul from 117.50.77.220 port 19847 ssh2 Jul 12 19:26:42 server sshd[43726]: Failed password for invalid user hand from 117.50.77.220 port 39227 ssh2	2020-07-13 01:39:18
117.50.77.220	attack	Jun 23 06:44:39 lukav-desktop sshd\[9221\]: Invalid user postgres from 117.50.77.220 Jun 23 06:44:39 lukav-desktop sshd\[9221\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.77.220 Jun 23 06:44:41 lukav-desktop sshd\[9221\]: Failed password for invalid user postgres from 117.50.77.220 port 38534 ssh2 Jun 23 06:49:24 lukav-desktop sshd\[9277\]: Invalid user do from 117.50.77.220 Jun 23 06:49:24 lukav-desktop sshd\[9277\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.77.220	2020-06-23 19:02:40
117.50.77.220	attack	Invalid user jayz from 117.50.77.220 port 22443	2020-06-12 19:24:11
117.50.77.220	attack	Jun 7 03:11:22 php1 sshd\[5589\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.77.220 user=root Jun 7 03:11:25 php1 sshd\[5589\]: Failed password for root from 117.50.77.220 port 23945 ssh2 Jun 7 03:14:38 php1 sshd\[5816\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.77.220 user=root Jun 7 03:14:40 php1 sshd\[5816\]: Failed password for root from 117.50.77.220 port 61779 ssh2 Jun 7 03:17:54 php1 sshd\[6043\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.77.220 user=root	2020-06-08 02:58:32
117.50.7.159	attack	Unauthorized connection attempt detected from IP address 117.50.7.159 to port 1080	2020-06-05 07:26:48
117.50.7.253	attackbotsspam	May 30 13:10:42 mail sshd[20526]: Failed password for root from 117.50.7.253 port 43474 ssh2 ...	2020-06-01 20:57:28
117.50.7.159	attackspam	port scan and connect, tcp 81 (hosts2-ns)	2020-05-31 22:50:54
117.50.71.169	attack	May 11 14:43:40 localhost sshd\[11907\]: Invalid user oracle from 117.50.71.169 May 11 14:43:40 localhost sshd\[11907\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.71.169 May 11 14:43:41 localhost sshd\[11907\]: Failed password for invalid user oracle from 117.50.71.169 port 46890 ssh2 May 11 14:46:47 localhost sshd\[12187\]: Invalid user write from 117.50.71.169 May 11 14:46:47 localhost sshd\[12187\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.71.169 ...	2020-05-11 20:59:35
117.50.71.169	attackbotsspam	May 9 03:39:29 h1745522 sshd[17132]: Invalid user nmp from 117.50.71.169 port 42110 May 9 03:39:29 h1745522 sshd[17132]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.71.169 May 9 03:39:29 h1745522 sshd[17132]: Invalid user nmp from 117.50.71.169 port 42110 May 9 03:39:31 h1745522 sshd[17132]: Failed password for invalid user nmp from 117.50.71.169 port 42110 ssh2 May 9 03:43:23 h1745522 sshd[17270]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.71.169 user=root May 9 03:43:26 h1745522 sshd[17270]: Failed password for root from 117.50.71.169 port 57528 ssh2 May 9 03:47:47 h1745522 sshd[17357]: Invalid user moses from 117.50.71.169 port 44712 May 9 03:47:47 h1745522 sshd[17357]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.71.169 May 9 03:47:47 h1745522 sshd[17357]: Invalid user moses from 117.50.71.169 port 44712 May 9 03:47:49 h ...	2020-05-09 19:31:10

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 117.50.7.14
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 10779
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;117.50.7.14.			IN	A

;; AUTHORITY SECTION:
.			586	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020072000 1800 900 604800 86400

;; Query time: 51 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Jul 20 14:05:57 CST 2020
;; MSG SIZE  rcvd: 115

HOST信息:

Host 14.7.50.117.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 14.7.50.117.in-addr.arpa: NXDOMAIN

IP	类型	评论内容	时间
92.19.185.40	attackbotsspam	MultiHost/MultiPort Probe, Scan, Hack -	2019-07-18 22:53:17
154.120.230.250	attack	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-18 08:19:37,551 INFO [amun_request_handler] PortScan Detected on Port: 445 (154.120.230.250)	2019-07-18 23:19:36
92.63.194.90	attackbotsspam	Jul 18 16:04:08 localhost sshd\[26792\]: Invalid user admin from 92.63.194.90 port 44114 Jul 18 16:04:08 localhost sshd\[26792\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=92.63.194.90 Jul 18 16:04:10 localhost sshd\[26792\]: Failed password for invalid user admin from 92.63.194.90 port 44114 ssh2	2019-07-18 22:14:01
103.51.103.114	attackbotsspam	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-18 08:19:48,646 INFO [amun_request_handler] PortScan Detected on Port: 445 (103.51.103.114)	2019-07-18 23:14:16
91.210.144.147	attack	Wordpress Admin Login attack	2019-07-18 22:48:33
73.187.89.63	attackbotsspam	Invalid user upgrade from 73.187.89.63 port 37448	2019-07-18 23:08:45
203.190.128.143	attackbots	Jul 18 15:21:45 v22019058497090703 sshd[13647]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.190.128.143 Jul 18 15:21:47 v22019058497090703 sshd[13647]: Failed password for invalid user celery from 203.190.128.143 port 35722 ssh2 Jul 18 15:27:31 v22019058497090703 sshd[13988]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.190.128.143 ...	2019-07-18 22:20:47
92.118.161.5	attackbots	MultiHost/MultiPort Probe, Scan, Hack -	2019-07-18 23:16:31
92.118.161.9	attackbotsspam	MultiHost/MultiPort Probe, Scan, Hack -	2019-07-18 23:03:39
212.26.136.202	attackspambots	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-18 09:32:32,824 INFO [amun_request_handler] PortScan Detected on Port: 445 (212.26.136.202)	2019-07-18 22:47:01
123.22.0.135	attackbots	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-18 09:32:14,060 INFO [amun_request_handler] PortScan Detected on Port: 445 (123.22.0.135)	2019-07-18 23:10:20
183.196.148.51	attackspam	Jul 18 12:55:26 host proftpd\[5664\]: 0.0.0.0 \(183.196.148.51\[183.196.148.51\]\) - USER anonymous: no such user found from 183.196.148.51 \[183.196.148.51\] to 62.210.146.38:21 ...	2019-07-18 22:17:04
211.220.27.191	attackbots	Jul 18 15:13:57 mail sshd\[32043\]: Failed password for invalid user csgo from 211.220.27.191 port 52322 ssh2 Jul 18 15:30:51 mail sshd\[32167\]: Invalid user omega from 211.220.27.191 port 49202 Jul 18 15:30:51 mail sshd\[32167\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.220.27.191 ...	2019-07-18 22:39:07
96.114.71.146	attackspam	Jul 18 15:40:20 localhost sshd\[15536\]: Invalid user eric from 96.114.71.146 port 40738 Jul 18 15:40:20 localhost sshd\[15536\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=96.114.71.146 ...	2019-07-18 22:56:11
185.143.221.187	attackbots	Port scan on 15 port(s): 4143 4188 4858 5180 5777 6578 6836 7626 8191 8200 8401 8437 8629 9178 9467	2019-07-18 23:11:35

最近上报的IP列表

32.43.246.139	204.132.178.30	177.93.191.216	120.7.149.50
185.158.114.43	237.206.234.74	134.122.29.46	112.201.169.105
32.39.86.185	114.203.1.152	124.77.88.79	103.108.187.100
51.75.210.219	27.114.132.61	233.26.100.208	201.206.69.237
10.54.70.71	232.52.53.191	194.116.236.208	125.164.21.182