117.50.40.157 - IPInfo

Basic Info

City: unknown

Region: Shanghai

Country: China

Internet Service Provider: Shanghai UCloud Information Technology Company Limited

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	firewall-block, port(s): 31572/tcp	2020-08-27 08:01:28
attackbots	Jun 21 08:14:37 h1745522 sshd[28290]: Invalid user tracy from 117.50.40.157 port 55134 Jun 21 08:14:37 h1745522 sshd[28290]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.40.157 Jun 21 08:14:37 h1745522 sshd[28290]: Invalid user tracy from 117.50.40.157 port 55134 Jun 21 08:14:39 h1745522 sshd[28290]: Failed password for invalid user tracy from 117.50.40.157 port 55134 ssh2 Jun 21 08:18:16 h1745522 sshd[28433]: Invalid user juliet from 117.50.40.157 port 37142 Jun 21 08:18:16 h1745522 sshd[28433]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.40.157 Jun 21 08:18:16 h1745522 sshd[28433]: Invalid user juliet from 117.50.40.157 port 37142 Jun 21 08:18:18 h1745522 sshd[28433]: Failed password for invalid user juliet from 117.50.40.157 port 37142 ssh2 Jun 21 08:21:50 h1745522 sshd[28535]: Invalid user ubuntu from 117.50.40.157 port 47380 ...	2020-06-21 17:42:13
attack	Invalid user webcam from 117.50.40.157 port 59824	2020-06-18 13:53:18
attackbotsspam	Jun 17 10:04:46 firewall sshd[9117]: Invalid user israel from 117.50.40.157 Jun 17 10:04:48 firewall sshd[9117]: Failed password for invalid user israel from 117.50.40.157 port 43324 ssh2 Jun 17 10:08:54 firewall sshd[9204]: Invalid user mha from 117.50.40.157 ...	2020-06-17 21:26:01
attack	Jun 7 15:11:58 home sshd[30941]: Failed password for root from 117.50.40.157 port 56530 ssh2 Jun 7 15:15:43 home sshd[31293]: Failed password for root from 117.50.40.157 port 38882 ssh2 ...	2020-06-08 01:03:22
attackspam	Invalid user peu01 from 117.50.40.157 port 52740	2020-06-07 07:12:16
attackspambots	Jun 3 12:44:38 Host-KLAX-C sshd[21437]: User root from 117.50.40.157 not allowed because not listed in AllowUsers ...	2020-06-04 04:11:06
attackbotsspam	May 30 08:46:40 ny01 sshd[2149]: Failed password for root from 117.50.40.157 port 43414 ssh2 May 30 08:51:24 ny01 sshd[2761]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.40.157 May 30 08:51:26 ny01 sshd[2761]: Failed password for invalid user ray from 117.50.40.157 port 35756 ssh2	2020-05-31 01:14:24
attack	2020-05-23T17:06:53.752533abusebot-7.cloudsearch.cf sshd[8440]: Invalid user vaa from 117.50.40.157 port 40972 2020-05-23T17:06:53.759299abusebot-7.cloudsearch.cf sshd[8440]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.40.157 2020-05-23T17:06:53.752533abusebot-7.cloudsearch.cf sshd[8440]: Invalid user vaa from 117.50.40.157 port 40972 2020-05-23T17:06:56.233011abusebot-7.cloudsearch.cf sshd[8440]: Failed password for invalid user vaa from 117.50.40.157 port 40972 ssh2 2020-05-23T17:11:58.613107abusebot-7.cloudsearch.cf sshd[8729]: Invalid user hxa from 117.50.40.157 port 32966 2020-05-23T17:11:58.622325abusebot-7.cloudsearch.cf sshd[8729]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.40.157 2020-05-23T17:11:58.613107abusebot-7.cloudsearch.cf sshd[8729]: Invalid user hxa from 117.50.40.157 port 32966 2020-05-23T17:12:00.970120abusebot-7.cloudsearch.cf sshd[8729]: Failed password for inva ...	2020-05-24 03:52:15
attackspam	May 22 08:23:28 prod4 sshd\[29844\]: Invalid user fsy from 117.50.40.157 May 22 08:23:30 prod4 sshd\[29844\]: Failed password for invalid user fsy from 117.50.40.157 port 42154 ssh2 May 22 08:28:20 prod4 sshd\[1740\]: Invalid user inl from 117.50.40.157 ...	2020-05-22 17:23:02
attackspam	May 16 01:52:14 lukav-desktop sshd\[23867\]: Invalid user ubuntu from 117.50.40.157 May 16 01:52:14 lukav-desktop sshd\[23867\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.40.157 May 16 01:52:16 lukav-desktop sshd\[23867\]: Failed password for invalid user ubuntu from 117.50.40.157 port 60552 ssh2 May 16 01:56:03 lukav-desktop sshd\[24049\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.40.157 user=root May 16 01:56:05 lukav-desktop sshd\[24049\]: Failed password for root from 117.50.40.157 port 44396 ssh2	2020-05-16 08:35:37
attackspam	$f2bV_matches	2020-05-04 12:52:55
attack	SSH Brute-Forcing (server1)	2020-04-30 20:07:40
attack	Apr 16 14:15:55 sshd\[30372\]: Invalid user xo from 117.50.40.157Apr 16 14:15:58 sshd\[30372\]: Failed password for invalid user xo from 117.50.40.157 port 40204 ssh2 ...	2020-04-16 20:17:55
attack	Apr 8 03:59:24 localhost sshd\[10827\]: Invalid user minecraft from 117.50.40.157 port 59110 Apr 8 03:59:24 localhost sshd\[10827\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.40.157 Apr 8 03:59:26 localhost sshd\[10827\]: Failed password for invalid user minecraft from 117.50.40.157 port 59110 ssh2 ...	2020-04-08 13:19:51
attack	Mar 14 05:28:36 srv-ubuntu-dev3 sshd[123845]: Invalid user git from 117.50.40.157 Mar 14 05:28:36 srv-ubuntu-dev3 sshd[123845]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.40.157 Mar 14 05:28:36 srv-ubuntu-dev3 sshd[123845]: Invalid user git from 117.50.40.157 Mar 14 05:28:38 srv-ubuntu-dev3 sshd[123845]: Failed password for invalid user git from 117.50.40.157 port 50550 ssh2 Mar 14 05:31:31 srv-ubuntu-dev3 sshd[124342]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.40.157 user=root Mar 14 05:31:33 srv-ubuntu-dev3 sshd[124342]: Failed password for root from 117.50.40.157 port 52740 ssh2 Mar 14 05:34:27 srv-ubuntu-dev3 sshd[124807]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.40.157 user=root Mar 14 05:34:30 srv-ubuntu-dev3 sshd[124807]: Failed password for root from 117.50.40.157 port 54926 ssh2 Mar 14 05:37:24 srv-ubuntu-dev3 sshd[125 ...	2020-03-14 12:40:37
attackbots	Mar 3 05:28:51 server sshd[1074754]: Failed password for invalid user sinusbot from 117.50.40.157 port 54456 ssh2 Mar 3 05:49:16 server sshd[1108648]: Failed password for invalid user oracle from 117.50.40.157 port 44606 ssh2 Mar 3 05:59:25 server sshd[1124880]: Failed password for invalid user sphinx from 117.50.40.157 port 39680 ssh2	2020-03-03 13:09:14
attackbotsspam	Unauthorized connection attempt detected from IP address 117.50.40.157 to port 2220 [J]	2020-01-17 00:52:03
attackspambots	2020-01-13 22:57:00,518 fail2ban.actions [2870]: NOTICE [sshd] Ban 117.50.40.157 2020-01-13 23:29:01,217 fail2ban.actions [2870]: NOTICE [sshd] Ban 117.50.40.157 2020-01-14 00:02:16,345 fail2ban.actions [2870]: NOTICE [sshd] Ban 117.50.40.157 2020-01-14 00:37:02,617 fail2ban.actions [2870]: NOTICE [sshd] Ban 117.50.40.157 2020-01-14 01:13:43,883 fail2ban.actions [2870]: NOTICE [sshd] Ban 117.50.40.157 ...	2020-01-14 08:15:26
attackspam	Jan 12 00:13:33 meumeu sshd[5904]: Failed password for root from 117.50.40.157 port 42246 ssh2 Jan 12 00:16:13 meumeu sshd[6358]: Failed password for root from 117.50.40.157 port 36586 ssh2 Jan 12 00:19:14 meumeu sshd[6885]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.40.157 ...	2020-01-12 08:19:43
attack	Jan 4 04:01:11 web9 sshd\[29960\]: Invalid user csgo from 117.50.40.157 Jan 4 04:01:11 web9 sshd\[29960\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.40.157 Jan 4 04:01:13 web9 sshd\[29960\]: Failed password for invalid user csgo from 117.50.40.157 port 35518 ssh2 Jan 4 04:04:45 web9 sshd\[30578\]: Invalid user qqj from 117.50.40.157 Jan 4 04:04:45 web9 sshd\[30578\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.40.157	2020-01-05 01:31:40
attackspambots	Brute force attempt	2019-12-23 02:40:25
attackbots	Fail2Ban Ban Triggered	2019-12-16 03:19:39
attackbotsspam	Dec 6 06:17:19 yesfletchmain sshd\[13377\]: Invalid user srdeeg from 117.50.40.157 port 43390 Dec 6 06:17:19 yesfletchmain sshd\[13377\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.40.157 Dec 6 06:17:22 yesfletchmain sshd\[13377\]: Failed password for invalid user srdeeg from 117.50.40.157 port 43390 ssh2 Dec 6 06:24:42 yesfletchmain sshd\[13570\]: Invalid user server from 117.50.40.157 port 43430 Dec 6 06:24:42 yesfletchmain sshd\[13570\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.40.157 ...	2019-12-06 20:08:32
attack	Unauthorized SSH login attempts	2019-12-05 07:32:43

Comments on same subnet:

IP	Type	Details	Datetime
117.50.40.205	attack	Jul 31 14:05:50 hidden kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:3e:4a:cc:28:99:3a:4d:23:91:08:00 SRC=117.50.40.205 DST=173.212.244.83 LEN=60 TOS=0x00 PREC=0x00 TTL=49 ID=56072 DF PROTO=TCP SPT=34684 DPT=1433 WINDOW=14140 RES=0x00 SYN URGP=0 Jul 31 14:05:51 hidden kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:3e:4a:cc:28:99:3a:4d:23:91:08:00 SRC=117.50.40.205 DST=173.212.244.83 LEN=60 TOS=0x00 PREC=0x00 TTL=49 ID=20928 DF PROTO=TCP SPT=55004 DPT=7002 WINDOW=14140 RES=0x00 SYN URGP=0 Jul 31 14:05:52 hidden kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:3e:4a:cc:28:99:3a:4d:23:91:08:00 SRC=117.50.40.205 DST=173.212.244.83 LEN=60 TOS=0x00 PREC=0x00 TTL=49 ID=20929 DF PROTO=TCP SPT=55004 DPT=7002 WINDOW=14140 RES=0x00 SYN URGP=0 Jul 31 14:05:52 hidden kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:3e:4a:cc:28:99:3a:4d:23:91:08:00 SRC=117.50.40.205 DST=173.212.244.83 LEN=60 TOS=0x00 PREC=0x00 TTL=49 ID=41192 DF PROTO=TCP SPT=34072 DPT=8080 WINDOW=14140 RES=0x00 SYN URGP=0 Jul 31 1 ...	2020-08-01 00:21:37
117.50.40.36	attack	Unauthorised connection attempt detected at AUO MAIN. System is sshd. Protected by AUO Stack Web Application Firewall (WAF)	2020-05-15 19:14:03
117.50.40.36	attackbots	May 4 20:52:31 ArkNodeAT sshd\[10410\]: Invalid user phf from 117.50.40.36 May 4 20:52:31 ArkNodeAT sshd\[10410\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.40.36 May 4 20:52:33 ArkNodeAT sshd\[10410\]: Failed password for invalid user phf from 117.50.40.36 port 36673 ssh2	2020-05-05 03:10:14
117.50.40.36	attackspam	May 3 22:24:45 web01 sshd[8637]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.40.36 May 3 22:24:47 web01 sshd[8637]: Failed password for invalid user veeam from 117.50.40.36 port 57250 ssh2 ...	2020-05-04 04:33:59
117.50.40.36	attack	Invalid user vivian from 117.50.40.36 port 44512	2020-05-03 17:59:33
117.50.40.36	attack	2020-04-21T03:49:19.663635abusebot-3.cloudsearch.cf sshd[18466]: Invalid user admin from 117.50.40.36 port 50620 2020-04-21T03:49:19.674457abusebot-3.cloudsearch.cf sshd[18466]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.40.36 2020-04-21T03:49:19.663635abusebot-3.cloudsearch.cf sshd[18466]: Invalid user admin from 117.50.40.36 port 50620 2020-04-21T03:49:22.076220abusebot-3.cloudsearch.cf sshd[18466]: Failed password for invalid user admin from 117.50.40.36 port 50620 ssh2 2020-04-21T03:52:52.043581abusebot-3.cloudsearch.cf sshd[18649]: Invalid user ubuntu from 117.50.40.36 port 40013 2020-04-21T03:52:52.049719abusebot-3.cloudsearch.cf sshd[18649]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.40.36 2020-04-21T03:52:52.043581abusebot-3.cloudsearch.cf sshd[18649]: Invalid user ubuntu from 117.50.40.36 port 40013 2020-04-21T03:52:54.025023abusebot-3.cloudsearch.cf sshd[18649]: Failed pass ...	2020-04-21 16:03:39
117.50.40.36	attackspam	Apr 13 19:07:42 mail sshd[17612]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.40.36 user=root Apr 13 19:07:45 mail sshd[17612]: Failed password for root from 117.50.40.36 port 44162 ssh2 Apr 13 19:27:05 mail sshd[15407]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.40.36 user=root Apr 13 19:27:07 mail sshd[15407]: Failed password for root from 117.50.40.36 port 51791 ssh2 Apr 13 19:33:12 mail sshd[24803]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.40.36 user=root Apr 13 19:33:13 mail sshd[24803]: Failed password for root from 117.50.40.36 port 52810 ssh2 ...	2020-04-14 03:15:59
117.50.40.36	attack	Brute force attempt	2020-04-07 04:25:04
117.50.40.36	attackbotsspam	2020-03-16T16:59:35.020701struts4.enskede.local sshd\[14768\]: Invalid user user from 117.50.40.36 port 53406 2020-03-16T16:59:35.028580struts4.enskede.local sshd\[14768\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.40.36 2020-03-16T16:59:38.269107struts4.enskede.local sshd\[14768\]: Failed password for invalid user user from 117.50.40.36 port 53406 ssh2 2020-03-16T17:08:58.284638struts4.enskede.local sshd\[14819\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.40.36 user=root 2020-03-16T17:09:01.961573struts4.enskede.local sshd\[14819\]: Failed password for root from 117.50.40.36 port 46309 ssh2 ...	2020-03-17 04:12:48
117.50.40.36	attackbotsspam	$f2bV_matches	2020-02-12 18:54:21
117.50.40.133	attack	Nov 15 01:57:27 server sshd\[13315\]: Invalid user user from 117.50.40.133 Nov 15 01:57:27 server sshd\[13315\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.40.133 Nov 15 01:57:29 server sshd\[13315\]: Failed password for invalid user user from 117.50.40.133 port 52748 ssh2 Nov 15 09:30:51 server sshd\[4768\]: Invalid user support from 117.50.40.133 Nov 15 09:30:51 server sshd\[4768\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.40.133 ...	2019-11-15 14:46:11

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 117.50.40.157
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 58030
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;117.50.40.157.			IN	A

;; AUTHORITY SECTION:
.			532	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019120201 1800 900 604800 86400

;; Query time: 109 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Dec 03 03:32:52 CST 2019
;; MSG SIZE  rcvd: 117

Host info

Host 157.40.50.117.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 157.40.50.117.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
201.7.215.106	attackspam	Unauthorized connection attempt from IP address 201.7.215.106 on Port 445(SMB)	2019-11-29 08:27:06
106.12.183.6	attackbots	ssh failed login	2019-11-29 08:04:10
217.58.211.78	attackspambots	Invalid user pi from 217.58.211.78 port 47198 pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=217.58.211.78 Invalid user pi from 217.58.211.78 port 47200 pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=217.58.211.78 Failed password for invalid user pi from 217.58.211.78 port 47198 ssh2	2019-11-29 07:59:27
114.40.161.9	attackbots	Unauthorized connection attempt from IP address 114.40.161.9 on Port 445(SMB)	2019-11-29 08:12:34
185.93.3.110	attack	(From rodgerOrinc@outlook.com) Having related backlinks is a must in today`s SEO world So, we are able to provide you with this great service at a mere price https://www.monkeydigital.co/product/related-backlinks/ You will receive full report within 15 days 500 to 1000 related backlinks will be provided in this service thanks and regards Monkey Digital Team support@monkeydigital.co	2019-11-29 08:20:38
182.160.114.26	attack	Unauthorized connection attempt from IP address 182.160.114.26 on Port 445(SMB)	2019-11-29 08:02:17
58.64.158.206	attack	Unauthorized connection attempt from IP address 58.64.158.206 on Port 445(SMB)	2019-11-29 07:55:35
106.13.54.207	attackspam	Nov 29 06:48:46 webhost01 sshd[12388]: Failed password for root from 106.13.54.207 port 49916 ssh2 ...	2019-11-29 08:23:59
51.254.38.106	attack	Invalid user herrman from 51.254.38.106 port 58937 pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.254.38.106 Failed password for invalid user herrman from 51.254.38.106 port 58937 ssh2 Invalid user levey from 51.254.38.106 port 48615 pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.254.38.106	2019-11-29 07:51:18
106.54.25.86	attackspambots	Automatic report - SSH Brute-Force Attack	2019-11-29 08:28:25
138.186.176.43	attackspambots	Unauthorized connection attempt from IP address 138.186.176.43 on Port 445(SMB)	2019-11-29 07:52:09
121.201.66.181	attack	Fail2Ban	2019-11-29 08:03:09
31.14.20.59	attackspam	port scan/probe/communication attempt; port 23	2019-11-29 08:29:09
180.163.43.210	attack	Unauthorized connection attempt from IP address 180.163.43.210 on Port 445(SMB)	2019-11-29 08:08:40
106.13.186.127	attackspam	Nov 28 23:05:27 zx01vmsma01 sshd[91317]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.186.127 Nov 28 23:05:29 zx01vmsma01 sshd[91317]: Failed password for invalid user demetrios from 106.13.186.127 port 53096 ssh2 ...	2019-11-29 08:14:43

Recently Reported IPs

139.201.193.131	107.17.89.32	201.174.134.173	7.22.205.60
222.200.213.208	12.173.232.124	192.138.210.121	43.53.243.124
150.153.222.109	17.94.29.115	210.54.198.216	195.84.170.117
23.254.168.243	89.103.164.103	107.106.164.213	225.174.223.218
162.227.152.103	46.165.9.172	205.128.155.242	222.71.182.18