City: unknown
Region: unknown
Country: China
Internet Service Provider: Shanghai UCloud Information Technology Company Limited
Hostname: unknown
Organization: unknown
Usage Type: Data Center/Web Hosting/Transit
| Type | Details | Datetime |
|---|---|---|
| attackspambots | SSH brute force |
2020-05-09 22:40:51 |
| attackbots | May 5 03:22:51 OPSO sshd\[14064\]: Invalid user denise from 117.50.134.134 port 54674 May 5 03:22:51 OPSO sshd\[14064\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.134.134 May 5 03:22:53 OPSO sshd\[14064\]: Failed password for invalid user denise from 117.50.134.134 port 54674 ssh2 May 5 03:28:20 OPSO sshd\[15238\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.134.134 user=root May 5 03:28:22 OPSO sshd\[15238\]: Failed password for root from 117.50.134.134 port 55500 ssh2 |
2020-05-05 09:58:53 |
| attackspam | $f2bV_matches |
2020-05-01 12:48:20 |
| attack | Invalid user admin from 117.50.134.134 port 50664 |
2020-04-25 06:26:09 |
| IP | Type | Details | Datetime |
|---|---|---|---|
| 117.50.134.48 | attackspambots | Invalid user swr from 117.50.134.48 port 54634 |
2020-05-23 13:10:07 |
| 117.50.134.56 | attackspam | 117.50.134.56 has been banned for [spam] ... |
2020-04-10 21:14:29 |
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 117.50.134.134
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 46701
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;117.50.134.134. IN A
;; AUTHORITY SECTION:
. 232 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2020042401 1800 900 604800 86400
;; Query time: 58 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Apr 25 06:26:05 CST 2020
;; MSG SIZE rcvd: 118Host 134.134.50.117.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 134.134.50.117.in-addr.arpa: NXDOMAIN| IP | Type | Details | Datetime |
|---|---|---|---|
| 123.206.106.171 | attack | Repeated RDP login failures. Last user: Atelier |
2020-04-02 12:27:06 |
| 181.129.98.202 | attack | Repeated RDP login failures. Last user: Demo |
2020-04-02 12:25:34 |
| 113.57.87.5 | attackspambots | Repeated RDP login failures. Last user: 01 |
2020-04-02 12:37:02 |
| 116.68.198.86 | attack | Repeated RDP login failures. Last user: Sistemas |
2020-04-02 12:36:34 |
| 58.33.35.205 | attackspambots | Repeated RDP login failures. Last user: Amanda |
2020-04-02 12:41:04 |
| 13.80.153.112 | attackbotsspam | Repeated RDP login failures. Last user: Administrator |
2020-04-02 12:42:41 |
| 94.191.90.85 | attackspambots | Apr 2 06:51:43 lukav-desktop sshd\[26975\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.191.90.85 user=root Apr 2 06:51:45 lukav-desktop sshd\[26975\]: Failed password for root from 94.191.90.85 port 50132 ssh2 Apr 2 06:59:14 lukav-desktop sshd\[27294\]: Invalid user dk from 94.191.90.85 Apr 2 06:59:14 lukav-desktop sshd\[27294\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.191.90.85 Apr 2 06:59:15 lukav-desktop sshd\[27294\]: Failed password for invalid user dk from 94.191.90.85 port 51746 ssh2 |
2020-04-02 12:15:37 |
| 118.184.216.197 | attackbots | Repeated RDP login failures. Last user: Demo |
2020-04-02 12:35:59 |
| 51.38.238.205 | attackbotsspam | SSH Brute-Force Attack |
2020-04-02 12:17:56 |
| 27.71.226.186 | attackspam | Repeated RDP login failures. Last user: 001 |
2020-04-02 12:42:22 |
| 177.126.207.248 | attackbots | Repeated RDP login failures. Last user: Administrator |
2020-04-02 12:32:35 |
| 177.94.241.14 | attackspam | Repeated RDP login failures. Last user: Dell |
2020-04-02 12:48:47 |
| 45.142.152.147 | attackspam | Repeated RDP login failures. Last user: T1 |
2020-04-02 12:41:42 |
| 98.172.130.196 | attackspambots | Repeated RDP login failures. Last user: Administrator |
2020-04-02 12:53:29 |
| 218.92.0.138 | attackspambots | DATE:2020-04-02 06:35:26, IP:218.92.0.138, PORT:ssh SSH brute force auth on honeypot server (epe-honey1-hq) |
2020-04-02 12:43:45 |