117.50.13.2 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: Shanghai UCloud Information Technology Company Limited

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	SSH login attempts with user root at 2020-01-02.	2020-01-03 03:05:03

Comments on same subnet:

IP	Type	Details	Datetime
117.50.13.54	attackbots	2020-09-14T02:28:13.751153ks3355764 sshd[25189]: Invalid user admin from 117.50.13.54 port 45496 2020-09-14T02:28:15.465900ks3355764 sshd[25189]: Failed password for invalid user admin from 117.50.13.54 port 45496 ssh2 ...	2020-09-15 03:07:18
117.50.13.167	attack	Sep 14 07:30:34 fhem-rasp sshd[7914]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.13.167 user=root Sep 14 07:30:36 fhem-rasp sshd[7914]: Failed password for root from 117.50.13.167 port 52142 ssh2 ...	2020-09-14 21:50:26
117.50.13.54	attackspam	2020-09-14T02:28:13.751153ks3355764 sshd[25189]: Invalid user admin from 117.50.13.54 port 45496 2020-09-14T02:28:15.465900ks3355764 sshd[25189]: Failed password for invalid user admin from 117.50.13.54 port 45496 ssh2 ...	2020-09-14 18:59:52
117.50.13.167	attackspam	Sep 14 07:30:34 fhem-rasp sshd[7914]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.13.167 user=root Sep 14 07:30:36 fhem-rasp sshd[7914]: Failed password for root from 117.50.13.167 port 52142 ssh2 ...	2020-09-14 13:44:10
117.50.13.167	attackbotsspam	ssh brute force	2020-09-14 05:41:29
117.50.13.13	attack	2020-09-13 09:28:44.341256-0500 localhost sshd[69370]: Failed password for root from 117.50.13.13 port 55836 ssh2	2020-09-13 22:34:34
117.50.13.13	attack	Sep 13 07:51:10 MainVPS sshd[21638]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.13.13 user=root Sep 13 07:51:12 MainVPS sshd[21638]: Failed password for root from 117.50.13.13 port 56794 ssh2 Sep 13 07:56:39 MainVPS sshd[23591]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.13.13 user=root Sep 13 07:56:41 MainVPS sshd[23591]: Failed password for root from 117.50.13.13 port 48626 ssh2 Sep 13 07:58:45 MainVPS sshd[24355]: Invalid user 1922 from 117.50.13.13 port 39166 ...	2020-09-13 14:30:25
117.50.13.13	attackbotsspam	Sep 13 02:17:40 lunarastro sshd[11646]: Failed password for root from 117.50.13.13 port 39300 ssh2	2020-09-13 06:14:02
117.50.137.36	attack	Port Scan/VNC login attempt ...	2020-09-06 04:00:37
117.50.137.36	attack	Port Scan/VNC login attempt ...	2020-09-05 19:43:34
117.50.137.10	attack	RDPBruteMak	2020-08-12 06:35:25
117.50.13.29	attackbotsspam	Invalid user administrator from 117.50.13.29 port 53876	2020-07-18 23:18:25
117.50.13.170	attack	Jul 8 02:17:09 server sshd[27232]: Failed password for invalid user yoshizu from 117.50.13.170 port 57058 ssh2 Jul 8 02:21:33 server sshd[30853]: Failed password for invalid user xsbk from 117.50.13.170 port 47602 ssh2 Jul 8 02:25:40 server sshd[34046]: Failed password for invalid user demo from 117.50.13.170 port 38146 ssh2	2020-07-08 08:41:24
117.50.132.62	attackbotsspam	TCP Port: 25 invalid blocked Listed on dnsbl-sorbs also barracuda and spam-sorbs (6)	2020-07-04 07:30:32
117.50.13.170	attack	SSH login attempts.	2020-06-15 02:18:09

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 117.50.13.2
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 24408
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;117.50.13.2.			IN	A

;; AUTHORITY SECTION:
.			138	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020010200 1800 900 604800 86400

;; Query time: 860 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Jan 03 03:05:00 CST 2020
;; MSG SIZE  rcvd: 115

Host info

Host 2.13.50.117.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 2.13.50.117.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
122.51.214.44	attack	2020-06-02T04:06:13.937777abusebot.cloudsearch.cf sshd[13262]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.214.44 user=root 2020-06-02T04:06:15.914868abusebot.cloudsearch.cf sshd[13262]: Failed password for root from 122.51.214.44 port 45208 ssh2 2020-06-02T04:09:55.867782abusebot.cloudsearch.cf sshd[13474]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.214.44 user=root 2020-06-02T04:09:57.654274abusebot.cloudsearch.cf sshd[13474]: Failed password for root from 122.51.214.44 port 52958 ssh2 2020-06-02T04:12:16.961882abusebot.cloudsearch.cf sshd[13609]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.214.44 user=root 2020-06-02T04:12:19.104898abusebot.cloudsearch.cf sshd[13609]: Failed password for root from 122.51.214.44 port 48294 ssh2 2020-06-02T04:14:31.954253abusebot.cloudsearch.cf sshd[13742]: pam_unix(sshd:auth): authentication fail ...	2020-06-02 17:33:57
183.89.214.96	attackspambots	(imapd) Failed IMAP login from 183.89.214.96 (TH/Thailand/mx-ll-183.89.214-96.dynamic.3bb.in.th): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: Jun 2 08:18:15 ir1 dovecot[2885757]: imap-login: Disconnected (auth failed, 1 attempts in 20 secs): user=, method=PLAIN, rip=183.89.214.96, lip=5.63.12.44, TLS, session=	2020-06-02 17:29:36
139.215.217.181	attackbots	Failed password for root from 139.215.217.181 port 46086 ssh2	2020-06-02 17:48:07
159.65.111.89	attack	Failed password for root from 159.65.111.89 port 36860 ssh2	2020-06-02 17:47:43
112.186.79.4	attackspam	$f2bV_matches	2020-06-02 17:38:07
115.52.120.59	attackbots	Trolling for resource vulnerabilities	2020-06-02 17:34:42
222.186.180.142	attackspam	Jun 2 11:07:56 legacy sshd[20228]: Failed password for root from 222.186.180.142 port 30745 ssh2 Jun 2 11:07:59 legacy sshd[20228]: Failed password for root from 222.186.180.142 port 30745 ssh2 Jun 2 11:08:01 legacy sshd[20228]: Failed password for root from 222.186.180.142 port 30745 ssh2 ...	2020-06-02 17:15:40
111.229.58.117	attack	sshd jail - ssh hack attempt	2020-06-02 17:46:34
167.99.183.237	attackbots	DATE:2020-06-02 05:48:07, IP:167.99.183.237, PORT:ssh SSH brute force auth (docker-dc)	2020-06-02 17:37:54
96.93.193.158	attack	Unauthorized connection attempt detected from IP address 96.93.193.158 to port 23	2020-06-02 17:27:37
106.13.140.83	attackspam	2020-06-02T05:59:56.636477shield sshd\[31210\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.140.83 user=root 2020-06-02T05:59:58.958947shield sshd\[31210\]: Failed password for root from 106.13.140.83 port 60024 ssh2 2020-06-02T06:02:23.740087shield sshd\[31584\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.140.83 user=root 2020-06-02T06:02:25.244367shield sshd\[31584\]: Failed password for root from 106.13.140.83 port 60984 ssh2 2020-06-02T06:04:47.432199shield sshd\[31973\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.140.83 user=root	2020-06-02 17:10:13
106.12.192.129	attackspam	Jun 2 11:05:35 piServer sshd[20829]: Failed password for root from 106.12.192.129 port 53234 ssh2 Jun 2 11:07:34 piServer sshd[21026]: Failed password for root from 106.12.192.129 port 42812 ssh2 ...	2020-06-02 17:17:41
101.124.70.81	attack	prod6 ...	2020-06-02 17:36:56
103.90.203.186	attackspambots	ssh intrusion attempt	2020-06-02 17:14:10
45.235.86.21	attackbotsspam	Jun 1 22:54:42 php1 sshd\[2509\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.235.86.21 user=root Jun 1 22:54:45 php1 sshd\[2509\]: Failed password for root from 45.235.86.21 port 52150 ssh2 Jun 1 22:58:46 php1 sshd\[2815\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.235.86.21 user=root Jun 1 22:58:48 php1 sshd\[2815\]: Failed password for root from 45.235.86.21 port 54800 ssh2 Jun 1 23:02:45 php1 sshd\[3149\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.235.86.21 user=root	2020-06-02 17:37:34

Recently Reported IPs

191.55.95.81	194.13.147.8	104.209.178.147	117.205.84.8
211.231.139.189	156.211.3.119	1.57.235.170	116.185.52.88
17.30.122.161	116.255.166.2	73.59.205.237	222.163.160.140
109.15.75.48	155.196.24.65	158.106.16.198	116.72.235.1
110.206.157.112	180.201.83.103	181.107.210.74	203.89.158.92