117.50.90.10 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Shanghai UCloud Information Technology Company Limited

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	Unauthorized connection attempt detected from IP address 117.50.90.10 to port 2220 [J]	2020-02-04 21:26:17
attackbots	Nov 1 05:07:43 game-panel sshd[2812]: Failed password for root from 117.50.90.10 port 56556 ssh2 Nov 1 05:12:38 game-panel sshd[4440]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.90.10 Nov 1 05:12:40 game-panel sshd[4440]: Failed password for invalid user Administrator from 117.50.90.10 port 37838 ssh2	2019-11-01 13:26:45
attack	2019-10-08T02:14:54.3678541495-001 sshd\[46831\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.90.10 user=root 2019-10-08T02:14:56.4207801495-001 sshd\[46831\]: Failed password for root from 117.50.90.10 port 41660 ssh2 2019-10-08T02:18:54.3191731495-001 sshd\[47158\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.90.10 user=root 2019-10-08T02:18:55.9856031495-001 sshd\[47158\]: Failed password for root from 117.50.90.10 port 46196 ssh2 2019-10-08T02:22:49.3853521495-001 sshd\[47550\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.90.10 user=root 2019-10-08T02:22:51.3126361495-001 sshd\[47550\]: Failed password for root from 117.50.90.10 port 50736 ssh2 ...	2019-10-08 14:39:50
attackspambots	Oct 2 00:05:50 SilenceServices sshd[16465]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.90.10 Oct 2 00:05:52 SilenceServices sshd[16465]: Failed password for invalid user ty@123 from 117.50.90.10 port 46388 ssh2 Oct 2 00:09:26 SilenceServices sshd[17808]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.90.10	2019-10-02 06:29:47
attackbotsspam	k+ssh-bruteforce	2019-09-28 12:24:34
attack	Sep 23 11:43:16 cp1server sshd[2929]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.90.10 user=mysql Sep 23 11:43:17 cp1server sshd[2929]: Failed password for mysql from 117.50.90.10 port 60576 ssh2 Sep 23 11:43:23 cp1server sshd[2930]: Received disconnect from 117.50.90.10: 11: Bye Bye Sep 23 12:00:30 cp1server sshd[5901]: Invalid user vyatta from 117.50.90.10 Sep 23 12:00:30 cp1server sshd[5901]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.90.10 Sep 23 12:00:32 cp1server sshd[5901]: Failed password for invalid user vyatta from 117.50.90.10 port 53878 ssh2 Sep 23 12:00:32 cp1server sshd[5902]: Received disconnect from 117.50.90.10: 11: Bye Bye Sep 23 12:05:04 cp1server sshd[6001]: Invalid user celery from 117.50.90.10 Sep 23 12:05:04 cp1server sshd[6001]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.90.10 ........ ------------------------------------------	2019-09-25 19:31:55

相同子网IP讨论:

IP	类型	评论内容	时间
117.50.90.220	attack	$f2bV_matches	2019-08-15 19:57:59
117.50.90.220	attack	Aug 4 08:17:22 tux-35-217 sshd\[29313\]: Invalid user patrick from 117.50.90.220 port 50808 Aug 4 08:17:22 tux-35-217 sshd\[29313\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.90.220 Aug 4 08:17:24 tux-35-217 sshd\[29313\]: Failed password for invalid user patrick from 117.50.90.220 port 50808 ssh2 Aug 4 08:22:54 tux-35-217 sshd\[29320\]: Invalid user finance from 117.50.90.220 port 42490 Aug 4 08:22:54 tux-35-217 sshd\[29320\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.90.220 ...	2019-08-04 15:09:41
117.50.90.220	attackspam	Aug 3 10:01:23 vps647732 sshd[3438]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.90.220 Aug 3 10:01:25 vps647732 sshd[3438]: Failed password for invalid user good from 117.50.90.220 port 36112 ssh2 ...	2019-08-03 16:14:02
117.50.90.220	attackbotsspam	Aug 2 21:58:59 dedicated sshd[24313]: Invalid user goverment from 117.50.90.220 port 43806	2019-08-03 04:14:46
117.50.90.220	attackbots	Jul 26 23:58:40 server sshd\[11503\]: User root from 117.50.90.220 not allowed because listed in DenyUsers Jul 26 23:58:40 server sshd\[11503\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.90.220 user=root Jul 26 23:58:43 server sshd\[11503\]: Failed password for invalid user root from 117.50.90.220 port 51384 ssh2 Jul 27 00:03:28 server sshd\[7518\]: User root from 117.50.90.220 not allowed because listed in DenyUsers Jul 27 00:03:28 server sshd\[7518\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.90.220 user=root	2019-07-27 05:12:20

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 117.50.90.10
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 375
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;117.50.90.10.			IN	A

;; AUTHORITY SECTION:
.			552	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019092500 1800 900 604800 86400

;; Query time: 705 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Sep 25 19:31:48 CST 2019
;; MSG SIZE  rcvd: 116

HOST信息:

Host 10.90.50.117.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 10.90.50.117.in-addr.arpa: NXDOMAIN

IP	类型	评论内容	时间
51.178.86.49	attackspam	Invalid user oliver from 51.178.86.49 port 39702	2020-05-01 14:37:02
117.50.71.169	attack	May 1 07:23:32 santamaria sshd\[29991\]: Invalid user yfc from 117.50.71.169 May 1 07:23:32 santamaria sshd\[29991\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.71.169 May 1 07:23:34 santamaria sshd\[29991\]: Failed password for invalid user yfc from 117.50.71.169 port 38542 ssh2 ...	2020-05-01 14:21:29
106.12.197.67	attackspambots	Invalid user anthony from 106.12.197.67 port 36058	2020-05-01 14:27:58
51.91.251.20	attackspambots	Invalid user alfred from 51.91.251.20 port 35408	2020-05-01 14:38:01
129.226.73.26	attack	ssh brute force	2020-05-01 14:15:45
37.139.47.126	attackbotsspam	May 1 08:34:44 legacy sshd[28942]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.139.47.126 May 1 08:34:46 legacy sshd[28942]: Failed password for invalid user moodle from 37.139.47.126 port 60092 ssh2 May 1 08:38:33 legacy sshd[29042]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.139.47.126 ...	2020-05-01 14:42:11
138.197.98.251	attackspam	Invalid user publico from 138.197.98.251 port 39106	2020-05-01 14:14:05
49.235.11.46	attack	Invalid user edu01 from 49.235.11.46 port 51124	2020-05-01 14:39:56
116.23.57.34	attackbots	Invalid user fabio from 116.23.57.34 port 42520	2020-05-01 14:23:16
142.93.239.197	attackspam	Invalid user zakir from 142.93.239.197 port 47284	2020-05-01 14:13:10
106.13.210.176	attackspam	Invalid user meteo from 106.13.210.176 port 60664	2020-05-01 14:26:11
157.230.32.164	attackbotsspam	Invalid user titan from 157.230.32.164 port 60366	2020-05-01 14:11:36
129.28.166.212	attack	Invalid user render from 129.28.166.212 port 40468	2020-05-01 14:16:16
51.38.71.36	attackbotsspam	Invalid user ertu from 51.38.71.36 port 32840	2020-05-01 14:38:55
51.15.209.100	attackbots	prod8 ...	2020-05-01 14:39:21

最近上报的IP列表

112.250.200.63	153.151.192.157	152.136.151.152	156.220.97.83
143.0.69.119	13.76.155.243	173.212.198.153	58.37.225.126
179.187.156.130	172.96.191.170	79.119.28.211	171.244.27.155
54.36.148.113	170.10.160.199	203.83.162.242	59.86.31.68
24.13.233.114	91.243.166.97	167.71.96.52	217.113.28.5