117.50.67.214 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: Shanghai UCloud Information Technology Company Limited

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	Apr 7 08:52:41 gw1 sshd[4646]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.67.214 Apr 7 08:52:43 gw1 sshd[4646]: Failed password for invalid user nicolas from 117.50.67.214 port 57186 ssh2 ...	2020-04-07 14:34:10
attackbots	Mar 24 13:34:55 server sshd\[28566\]: Failed password for invalid user maxine from 117.50.67.214 port 38698 ssh2 Mar 24 19:56:11 server sshd\[24885\]: Invalid user sad from 117.50.67.214 Mar 24 19:56:11 server sshd\[24885\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.67.214 Mar 24 19:56:13 server sshd\[24885\]: Failed password for invalid user sad from 117.50.67.214 port 33388 ssh2 Mar 25 07:39:22 server sshd\[27219\]: Invalid user gitlab-prometheus from 117.50.67.214 Mar 25 07:39:22 server sshd\[27219\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.67.214 ...	2020-03-25 13:09:26
attack	Fail2Ban - SSH Bruteforce Attempt	2020-03-16 20:07:31
attackspam	fail2ban	2020-03-06 14:50:34
attackbotsspam	Mar 4 07:14:35 webhost01 sshd[4169]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.67.214 Mar 4 07:14:38 webhost01 sshd[4169]: Failed password for invalid user mapred from 117.50.67.214 port 55558 ssh2 ...	2020-03-04 08:47:07
attackspambots	Feb 25 03:57:24 sd-53420 sshd\[13391\]: Invalid user ubuntu8 from 117.50.67.214 Feb 25 03:57:24 sd-53420 sshd\[13391\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.67.214 Feb 25 03:57:26 sd-53420 sshd\[13391\]: Failed password for invalid user ubuntu8 from 117.50.67.214 port 45874 ssh2 Feb 25 04:01:42 sd-53420 sshd\[13792\]: Invalid user deployer from 117.50.67.214 Feb 25 04:01:42 sd-53420 sshd\[13792\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.67.214 ...	2020-02-25 12:15:18
attackbotsspam	Jan 29 08:02:09 MK-Soft-Root2 sshd[27663]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.67.214 Jan 29 08:02:11 MK-Soft-Root2 sshd[27663]: Failed password for invalid user lona from 117.50.67.214 port 33856 ssh2 ...	2020-01-29 15:16:43
attackbots	Dec 6 14:16:19 lnxweb61 sshd[9310]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.67.214 Dec 6 14:16:19 lnxweb61 sshd[9310]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.67.214	2019-12-06 22:35:55
attack	2019-11-29T06:58:08.345148abusebot.cloudsearch.cf sshd\[28564\]: Invalid user asdfgh123 from 117.50.67.214 port 54084 2019-11-29T06:58:08.350289abusebot.cloudsearch.cf sshd\[28564\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.67.214	2019-11-29 16:33:26
attackbotsspam	2019-11-22T16:24:01.137534abusebot.cloudsearch.cf sshd\[12906\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.67.214 user=root	2019-11-23 04:10:50
attackbots	Nov 20 15:46:30 jane sshd[29935]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.67.214 Nov 20 15:46:32 jane sshd[29935]: Failed password for invalid user chengzhong from 117.50.67.214 port 60906 ssh2 ...	2019-11-20 23:20:10
attack	Nov 10 11:16:42 root sshd[25654]: Failed password for root from 117.50.67.214 port 45010 ssh2 Nov 10 11:28:25 root sshd[25754]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.67.214 Nov 10 11:28:27 root sshd[25754]: Failed password for invalid user lab from 117.50.67.214 port 35284 ssh2 ...	2019-11-10 18:38:10
attack	Oct 23 06:02:31 venus sshd\[30466\]: Invalid user seidel from 117.50.67.214 port 41522 Oct 23 06:02:31 venus sshd\[30466\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.67.214 Oct 23 06:02:33 venus sshd\[30466\]: Failed password for invalid user seidel from 117.50.67.214 port 41522 ssh2 ...	2019-10-23 14:26:39
attackspam	Oct 17 08:01:14 v22019058497090703 sshd[7622]: Failed password for root from 117.50.67.214 port 49690 ssh2 Oct 17 08:05:59 v22019058497090703 sshd[7972]: Failed password for root from 117.50.67.214 port 50332 ssh2 ...	2019-10-17 15:00:12
attack	Oct 13 00:50:55 dedicated sshd[1730]: Invalid user 12345@Admin from 117.50.67.214 port 54064	2019-10-13 07:07:29
attack	Brute force attempt	2019-10-12 18:31:57
attack	Oct 7 15:45:23 lnxded64 sshd[20089]: Failed password for root from 117.50.67.214 port 58416 ssh2 Oct 7 15:45:23 lnxded64 sshd[20089]: Failed password for root from 117.50.67.214 port 58416 ssh2	2019-10-08 02:54:05
attack	Sep 30 11:50:39 vps647732 sshd[4288]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.67.214 Sep 30 11:50:41 vps647732 sshd[4288]: Failed password for invalid user labs from 117.50.67.214 port 44382 ssh2 ...	2019-09-30 18:10:37
attackbots	Sep 25 13:00:15 XXX sshd[50058]: Invalid user vy from 117.50.67.214 port 47996	2019-09-26 04:28:34
attack	Sep 11 00:15:12 meumeu sshd[22632]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.67.214 Sep 11 00:15:15 meumeu sshd[22632]: Failed password for invalid user web5 from 117.50.67.214 port 56696 ssh2 Sep 11 00:18:32 meumeu sshd[23003]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.67.214 ...	2019-09-11 06:23:49
attackbots	Sep 5 13:38:53 microserver sshd[17478]: Invalid user its from 117.50.67.214 port 35192 Sep 5 13:38:53 microserver sshd[17478]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.67.214 Sep 5 13:38:55 microserver sshd[17478]: Failed password for invalid user its from 117.50.67.214 port 35192 ssh2 Sep 5 13:42:24 microserver sshd[18079]: Invalid user nextcloud from 117.50.67.214 port 34494 Sep 5 13:42:24 microserver sshd[18079]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.67.214 Sep 5 13:56:17 microserver sshd[20057]: Invalid user 27 from 117.50.67.214 port 59926 Sep 5 13:56:17 microserver sshd[20057]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.67.214 Sep 5 13:56:19 microserver sshd[20057]: Failed password for invalid user 27 from 117.50.67.214 port 59926 ssh2 Sep 5 13:59:39 microserver sshd[20231]: Invalid user rustserver from 117.50.67.214 port 59226 Sep 5	2019-09-05 20:23:17
attackspambots	Aug 4 14:03:26 mout sshd[28291]: Invalid user creative from 117.50.67.214 port 49118	2019-08-04 20:45:55
attackspambots	2019-07-22T15:20:31.002053 sshd[27371]: Invalid user fei from 117.50.67.214 port 35274 2019-07-22T15:20:31.016676 sshd[27371]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.67.214 2019-07-22T15:20:31.002053 sshd[27371]: Invalid user fei from 117.50.67.214 port 35274 2019-07-22T15:20:33.736690 sshd[27371]: Failed password for invalid user fei from 117.50.67.214 port 35274 ssh2 2019-07-22T15:22:24.070895 sshd[27414]: Invalid user csgoserver from 117.50.67.214 port 49410 ...	2019-07-22 22:22:56
attackspam	Jun 30 09:30:21 mail sshd\[6872\]: Invalid user nagios from 117.50.67.214 port 54058 Jun 30 09:30:21 mail sshd\[6872\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.67.214 Jun 30 09:30:24 mail sshd\[6872\]: Failed password for invalid user nagios from 117.50.67.214 port 54058 ssh2 Jun 30 09:34:30 mail sshd\[8330\]: Invalid user view from 117.50.67.214 port 56656 Jun 30 09:34:30 mail sshd\[8330\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.67.214 ...	2019-06-30 15:57:36

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 117.50.67.214
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 10675
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;117.50.67.214.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019063000 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sun Jun 30 15:57:18 CST 2019
;; MSG SIZE  rcvd: 117

Host info

Host 214.67.50.117.in-addr.arpa not found: 2(SERVFAIL)

Nslookup info:

;; Got SERVFAIL reply from 67.207.67.2, trying next server
Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 214.67.50.117.in-addr.arpa: SERVFAIL

Related IP info:

Related comments:

IP	Type	Details	Datetime
61.74.118.139	attackbotsspam	SSH brute-force attempt	2020-04-30 16:48:22
180.113.67.159	attack	lfd: (smtpauth) Failed SMTP AUTH login from 180.113.67.159 (-): 5 in the last 3600 secs - Wed Jun 13 08:52:31 2018	2020-04-30 16:41:52
35.225.211.131	attackspambots	WordPress login Brute force / Web App Attack on client site.	2020-04-30 16:13:01
167.99.131.243	attackspam	Invalid user sinus1 from 167.99.131.243 port 47572	2020-04-30 16:14:42
40.118.91.139	attack	Repeated RDP login failures. Last user: bwu	2020-04-30 16:39:52
159.203.98.228	attack	159.203.98.228 - - \[30/Apr/2020:06:24:37 +0200\] "POST /wp-login.php HTTP/1.1" 200 10017 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 159.203.98.228 - - \[30/Apr/2020:06:24:38 +0200\] "POST /wp-login.php HTTP/1.1" 200 9787 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" ...	2020-04-30 16:31:35
180.114.150.65	attackspam	lfd: (smtpauth) Failed SMTP AUTH login from 180.114.150.65 (-): 5 in the last 3600 secs - Wed Jun 13 22:48:49 2018	2020-04-30 16:25:57
155.4.19.42	attackbots	20 attempts against mh-ssh on cloud	2020-04-30 16:17:57
51.77.147.95	attack	Apr 30 07:15:51 meumeu sshd[31523]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.77.147.95 Apr 30 07:15:53 meumeu sshd[31523]: Failed password for invalid user kd@123 from 51.77.147.95 port 52358 ssh2 Apr 30 07:17:50 meumeu sshd[31767]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.77.147.95 Apr 30 07:17:51 meumeu sshd[31767]: Failed password for invalid user tomcat123 from 51.77.147.95 port 42664 ssh2 ...	2020-04-30 16:46:43
81.128.171.59	attack	RDP Brute-Force (honeypot 8)	2020-04-30 16:22:40
106.13.164.136	attack	$f2bV_matches	2020-04-30 16:46:01
186.113.18.109	attackspam	Invalid user hamid from 186.113.18.109 port 37384	2020-04-30 16:19:03
51.15.226.137	attackbotsspam	20 attempts against mh-ssh on cloud	2020-04-30 16:45:31
49.76.11.206	attackspambots	lfd: (smtpauth) Failed SMTP AUTH login from 49.76.11.206 (-): 5 in the last 3600 secs - Wed Jun 13 22:19:19 2018	2020-04-30 16:28:02
72.13.134.3	attack	RDP Brute-Force (honeypot 11)	2020-04-30 16:24:34

Recently Reported IPs

229.79.89.69	187.111.59.121	116.52.44.109	1.172.230.77
218.164.18.253	189.89.218.29	170.244.13.81	91.247.178.187
217.224.140.218	187.171.116.51	184.105.94.219	230.227.231.91
110.166.140.139	59.120.21.64	185.17.149.138	212.146.180.235
102.57.141.67	49.183.243.99	64.126.77.128	191.53.194.61