City: unknown
Region: Shanghai
Country: China
Internet Service Provider: Shanghai UCloud Information Technology Company Limited
Hostname: unknown
Organization: China Unicom Beijing Province Network
Usage Type: Data Center/Web Hosting/Transit
| Type | Details | Datetime |
|---|---|---|
| attack | Invalid user tt from 117.50.27.57 port 58476 |
2019-08-23 18:15:55 |
| attackspambots | Jul 28 20:13:07 itv-usvr-01 sshd[9881]: Invalid user www from 117.50.27.57 |
2019-07-29 02:19:20 |
| attack | SSH Brute Force |
2019-07-28 18:52:20 |
| attackspam | 2019-07-28T06:43:29.193597enmeeting.mahidol.ac.th sshd\[28975\]: User root from 117.50.27.57 not allowed because not listed in AllowUsers 2019-07-28T06:43:29.315009enmeeting.mahidol.ac.th sshd\[28975\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.27.57 user=root 2019-07-28T06:43:31.792176enmeeting.mahidol.ac.th sshd\[28975\]: Failed password for invalid user root from 117.50.27.57 port 53048 ssh2 ... |
2019-07-28 08:01:49 |
| attack | Invalid user weblogic from 117.50.27.57 port 49393 |
2019-07-24 17:42:04 |
| attack | SSH Brute Force, server-1 sshd[22207]: Failed password for invalid user bonec from 117.50.27.57 port 44211 ssh2 |
2019-07-17 11:27:09 |
| attackspambots | SSH Brute Force |
2019-07-13 16:56:55 |
| attackspam | Jul 10 01:34:18 mail sshd[848]: Invalid user simon from 117.50.27.57 ... |
2019-07-10 08:38:30 |
| attack | 2019-07-09T18:31:46.401182abusebot-5.cloudsearch.cf sshd\[12104\]: Invalid user boon from 117.50.27.57 port 56659 |
2019-07-10 05:13:15 |
| attack | 2019-07-05T04:40:29.335940abusebot-5.cloudsearch.cf sshd\[6355\]: Invalid user ashley from 117.50.27.57 port 36799 |
2019-07-05 14:46:32 |
| attackspambots | Jul 3 15:13:31 ubuntu-2gb-nbg1-dc3-1 sshd[9735]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.27.57 Jul 3 15:13:33 ubuntu-2gb-nbg1-dc3-1 sshd[9735]: Failed password for invalid user drive from 117.50.27.57 port 48860 ssh2 ... |
2019-07-04 05:08:00 |
| attack | Jul 1 10:02:04 ncomp sshd[3880]: Invalid user ftpuser from 117.50.27.57 Jul 1 10:02:04 ncomp sshd[3880]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.27.57 Jul 1 10:02:04 ncomp sshd[3880]: Invalid user ftpuser from 117.50.27.57 Jul 1 10:02:06 ncomp sshd[3880]: Failed password for invalid user ftpuser from 117.50.27.57 port 38091 ssh2 |
2019-07-01 16:42:13 |
| attack | Invalid user p2p from 117.50.27.57 port 44432 |
2019-06-28 20:46:49 |
| attackspam | Invalid user p2p from 117.50.27.57 port 44432 |
2019-06-27 16:59:50 |
| attack | Jun 24 06:55:05 host sshd\[40898\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.27.57 user=root Jun 24 06:55:07 host sshd\[40898\]: Failed password for root from 117.50.27.57 port 41829 ssh2 ... |
2019-06-24 15:35:12 |
b
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 117.50.27.57
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 2471
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;117.50.27.57. IN A
;; AUTHORITY SECTION:
. 3600 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2019040501 1800 900 604800 86400
;; Query time: 2 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Sat Apr 06 11:30:47 +08 2019
;; MSG SIZE rcvd: 116
Host 57.27.50.117.in-addr.arpa not found: 2(SERVFAIL)
;; Got SERVFAIL reply from 67.207.67.3, trying next server
Server: 67.207.67.2
Address: 67.207.67.2#53
** server can't find 57.27.50.117.in-addr.arpa: SERVFAIL
| IP | Type | Details | Datetime |
|---|---|---|---|
| 104.237.159.50 | attack | MultiHost/MultiPort Probe, Scan, Hack - |
2019-12-10 03:20:51 |
| 223.75.116.49 | attack | Port 1433 Scan |
2019-12-10 03:22:58 |
| 109.116.196.174 | attackbotsspam | Dec 9 19:21:12 legacy sshd[23856]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=109.116.196.174 Dec 9 19:21:14 legacy sshd[23856]: Failed password for invalid user zhangch2 from 109.116.196.174 port 47028 ssh2 Dec 9 19:27:21 legacy sshd[24149]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=109.116.196.174 ... |
2019-12-10 03:25:26 |
| 200.46.28.45 | attackspambots | Unauthorized connection attempt from IP address 200.46.28.45 on Port 445(SMB) |
2019-12-10 02:58:34 |
| 45.204.1.63 | attack | Dec 9 19:13:49 server sshd\[16322\]: Invalid user oracl from 45.204.1.63 Dec 9 19:13:49 server sshd\[16322\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.204.1.63 Dec 9 19:13:51 server sshd\[16322\]: Failed password for invalid user oracl from 45.204.1.63 port 50432 ssh2 Dec 9 19:21:52 server sshd\[18595\]: Invalid user flod from 45.204.1.63 Dec 9 19:21:52 server sshd\[18595\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.204.1.63 ... |
2019-12-10 02:51:57 |
| 104.244.79.146 | attack | 2019-12-09T19:23:42.514564vps751288.ovh.net sshd\[818\]: Invalid user fake from 104.244.79.146 port 48600 2019-12-09T19:23:42.522924vps751288.ovh.net sshd\[818\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.244.79.146 2019-12-09T19:23:44.676447vps751288.ovh.net sshd\[818\]: Failed password for invalid user fake from 104.244.79.146 port 48600 ssh2 2019-12-09T19:23:45.072988vps751288.ovh.net sshd\[820\]: Invalid user ubnt from 104.244.79.146 port 52200 2019-12-09T19:23:45.082297vps751288.ovh.net sshd\[820\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.244.79.146 |
2019-12-10 02:53:39 |
| 148.70.59.114 | attackbots | 2019-12-09T18:23:35.372297shield sshd\[3108\]: Invalid user vod from 148.70.59.114 port 12259 2019-12-09T18:23:35.375738shield sshd\[3108\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.59.114 2019-12-09T18:23:38.235545shield sshd\[3108\]: Failed password for invalid user vod from 148.70.59.114 port 12259 ssh2 2019-12-09T18:30:35.180495shield sshd\[4345\]: Invalid user gowan from 148.70.59.114 port 18712 2019-12-09T18:30:35.183643shield sshd\[4345\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.59.114 |
2019-12-10 02:46:17 |
| 91.244.255.54 | attackspam | Unauthorized connection attempt from IP address 91.244.255.54 on Port 445(SMB) |
2019-12-10 03:19:06 |
| 193.70.2.50 | attackbotsspam | $f2bV_matches |
2019-12-10 03:17:54 |
| 156.215.75.164 | attackspam | Unauthorized connection attempt detected from IP address 156.215.75.164 to port 445 |
2019-12-10 03:23:27 |
| 191.54.137.71 | attackspam | Unauthorized connection attempt from IP address 191.54.137.71 on Port 445(SMB) |
2019-12-10 03:15:06 |
| 186.43.32.98 | attack | Unauthorized connection attempt from IP address 186.43.32.98 on Port 445(SMB) |
2019-12-10 03:20:11 |
| 218.92.0.158 | attackbotsspam | Dec 9 19:53:06 MK-Soft-Root2 sshd[30026]: Failed password for root from 218.92.0.158 port 13553 ssh2 Dec 9 19:53:10 MK-Soft-Root2 sshd[30026]: Failed password for root from 218.92.0.158 port 13553 ssh2 ... |
2019-12-10 02:55:09 |
| 157.230.239.99 | attackspam | Nov 20 23:36:59 odroid64 sshd\[15759\]: User root from 157.230.239.99 not allowed because not listed in AllowUsers Nov 20 23:36:59 odroid64 sshd\[15759\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.239.99 user=root ... |
2019-12-10 02:55:29 |
| 185.176.27.18 | attackspam | 12/09/2019-13:22:44.222328 185.176.27.18 Protocol: 6 ET DROP Dshield Block Listed Source group 1 |
2019-12-10 02:59:01 |