117.50.74.34 - IPInfo

Basic Info

City: unknown

Region: Shanghai

Country: China

Internet Service Provider: Shanghai UCloud Information Technology Company Limited

Hostname: unknown

Organization: China Unicom Beijing Province Network

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Oct 26 16:11:15 vmanager6029 sshd\[31987\]: Invalid user userftp from 117.50.74.34 port 47201 Oct 26 16:11:16 vmanager6029 sshd\[31987\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.74.34 Oct 26 16:11:18 vmanager6029 sshd\[31987\]: Failed password for invalid user userftp from 117.50.74.34 port 47201 ssh2	2019-10-26 22:44:34
attackbots	Oct 18 15:53:31 plusreed sshd[12262]: Invalid user azerty from 117.50.74.34 ...	2019-10-19 04:16:03
attack	Automatic report - Banned IP Access	2019-10-16 10:06:35
attackbots	2019-10-01T00:07:09.301899hub.schaetter.us sshd\[9728\]: Invalid user ketav from 117.50.74.34 port 59865 2019-10-01T00:07:09.307686hub.schaetter.us sshd\[9728\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.74.34 2019-10-01T00:07:11.713123hub.schaetter.us sshd\[9728\]: Failed password for invalid user ketav from 117.50.74.34 port 59865 ssh2 2019-10-01T00:10:48.542257hub.schaetter.us sshd\[9740\]: Invalid user manager from 117.50.74.34 port 44191 2019-10-01T00:10:48.552414hub.schaetter.us sshd\[9740\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.74.34 ...	2019-10-01 08:43:36
attackbots	Port Scan detected from 117.50.74.34 (CN/China/-). 4 hits in the last 220 seconds	2019-09-25 19:22:37
attackbots	Sep 20 17:05:54 vps200512 sshd\[10026\]: Invalid user skid from 117.50.74.34 Sep 20 17:05:54 vps200512 sshd\[10026\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.74.34 Sep 20 17:05:56 vps200512 sshd\[10026\]: Failed password for invalid user skid from 117.50.74.34 port 60609 ssh2 Sep 20 17:09:02 vps200512 sshd\[10072\]: Invalid user dlzhu from 117.50.74.34 Sep 20 17:09:02 vps200512 sshd\[10072\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.74.34	2019-09-21 05:15:52
attack	Jul 23 06:48:40 server sshd\[21327\]: Invalid user dell from 117.50.74.34 port 41447 Jul 23 06:48:40 server sshd\[21327\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.74.34 Jul 23 06:48:43 server sshd\[21327\]: Failed password for invalid user dell from 117.50.74.34 port 41447 ssh2 Jul 23 06:50:12 server sshd\[1416\]: Invalid user unknown from 117.50.74.34 port 48531 Jul 23 06:50:12 server sshd\[1416\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.74.34	2019-07-23 15:00:25
attackbotsspam	Jul 22 22:11:21 server sshd\[19460\]: Invalid user ava from 117.50.74.34 port 52999 Jul 22 22:11:21 server sshd\[19460\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.74.34 Jul 22 22:11:24 server sshd\[19460\]: Failed password for invalid user ava from 117.50.74.34 port 52999 ssh2 Jul 22 22:12:50 server sshd\[11995\]: Invalid user sam from 117.50.74.34 port 60084 Jul 22 22:12:50 server sshd\[11995\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.74.34	2019-07-23 03:22:53

Comments on same subnet:

IP	Type	Details	Datetime
117.50.74.15	attack	(sshd) Failed SSH login from 117.50.74.15 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Apr 29 14:54:03 srv sshd[29438]: Invalid user qwer from 117.50.74.15 port 57282 Apr 29 14:54:05 srv sshd[29438]: Failed password for invalid user qwer from 117.50.74.15 port 57282 ssh2 Apr 29 15:00:02 srv sshd[29593]: Invalid user office from 117.50.74.15 port 34210 Apr 29 15:00:05 srv sshd[29593]: Failed password for invalid user office from 117.50.74.15 port 34210 ssh2 Apr 29 15:03:42 srv sshd[29680]: Invalid user eliot from 117.50.74.15 port 47540	2020-04-29 20:56:33
117.50.74.15	attackbots	$f2bV_matches	2020-04-28 14:21:03
117.50.74.15	attackbotsspam	Brute-force attempt banned	2020-04-18 01:24:17
117.50.74.191	attackspambots	Oct 29 17:16:04 [snip] sshd[29729]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.74.191 user=root Oct 29 17:16:06 [snip] sshd[29729]: Failed password for root from 117.50.74.191 port 53629 ssh2 Oct 29 17:35:12 [snip] sshd[31753]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.74.191 user=root[...]	2019-10-30 02:21:59
117.50.74.191	attackbotsspam	Oct 22 19:47:57 OPSO sshd\[3861\]: Invalid user xxx119 from 117.50.74.191 port 40195 Oct 22 19:47:57 OPSO sshd\[3861\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.74.191 Oct 22 19:47:59 OPSO sshd\[3861\]: Failed password for invalid user xxx119 from 117.50.74.191 port 40195 ssh2 Oct 22 19:51:44 OPSO sshd\[4511\]: Invalid user fepbytr123 from 117.50.74.191 port 52856 Oct 22 19:51:44 OPSO sshd\[4511\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.74.191	2019-10-23 02:20:03
117.50.74.191	attackbotsspam	Oct 17 00:56:52 sauna sshd[4625]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.74.191 Oct 17 00:56:54 sauna sshd[4625]: Failed password for invalid user hotdog from 117.50.74.191 port 47754 ssh2 ...	2019-10-17 07:29:54
117.50.74.191	attack	ssh failed login	2019-10-10 22:24:21
117.50.74.191	attack	$f2bV_matches	2019-09-22 03:52:09
117.50.74.191	attackbots	Sep 6 05:51:48 aiointranet sshd\[4706\]: Invalid user 1q2w3e4r5t6y from 117.50.74.191 Sep 6 05:51:48 aiointranet sshd\[4706\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.74.191 Sep 6 05:51:50 aiointranet sshd\[4706\]: Failed password for invalid user 1q2w3e4r5t6y from 117.50.74.191 port 54889 ssh2 Sep 6 05:53:56 aiointranet sshd\[4883\]: Invalid user qwerty from 117.50.74.191 Sep 6 05:53:56 aiointranet sshd\[4883\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.74.191	2019-09-07 06:46:20
117.50.74.191	attackspam	Aug 18 11:04:17 localhost sshd[18329]: Invalid user jeremiah from 117.50.74.191 port 57794 Aug 18 11:04:17 localhost sshd[18329]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.74.191 Aug 18 11:04:17 localhost sshd[18329]: Invalid user jeremiah from 117.50.74.191 port 57794 Aug 18 11:04:19 localhost sshd[18329]: Failed password for invalid user jeremiah from 117.50.74.191 port 57794 ssh2 ...	2019-08-18 16:20:26
117.50.74.191	attackbotsspam	Jul 13 23:17:05 vps647732 sshd[14428]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.74.191 Jul 13 23:17:07 vps647732 sshd[14428]: Failed password for invalid user user5 from 117.50.74.191 port 41801 ssh2 ...	2019-07-14 05:34:21

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 117.50.74.34
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 49415
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;117.50.74.34.			IN	A

;; AUTHORITY SECTION:
.			3359	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019072201 1800 900 604800 86400

;; Query time: 0 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Tue Jul 23 03:22:48 CST 2019
;; MSG SIZE  rcvd: 116

Host info

Host 34.74.50.117.in-addr.arpa not found: 2(SERVFAIL)

Nslookup info:

;; Got SERVFAIL reply from 67.207.67.2, trying next server
Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 34.74.50.117.in-addr.arpa: SERVFAIL

Related IP info:

Related comments:

IP	Type	Details	Datetime
74.82.47.4	attack	srv02 Mass scanning activity detected Target: 548(afpovertcp) ..	2020-07-18 14:55:42
71.212.151.228	attack	71.212.151.228 - - [18/Jul/2020:07:30:44 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0)" 71.212.151.228 - - [18/Jul/2020:07:30:45 +0100] "POST /wp-login.php HTTP/1.1" 302 0 "-" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0)" 71.212.151.228 - - [18/Jul/2020:07:45:04 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0)" ...	2020-07-18 15:03:08
180.250.28.34	attack	Automatic report - XMLRPC Attack	2020-07-18 14:38:30
36.250.229.115	attack	Jul 18 07:19:24 vps647732 sshd[29544]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.250.229.115 Jul 18 07:19:26 vps647732 sshd[29544]: Failed password for invalid user xzq from 36.250.229.115 port 58200 ssh2 ...	2020-07-18 14:37:35
178.128.80.85	attackspam	2020-07-18T09:14:17.287767afi-git.jinr.ru sshd[6934]: Invalid user odoo from 178.128.80.85 port 50654 2020-07-18T09:14:17.291077afi-git.jinr.ru sshd[6934]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.80.85 2020-07-18T09:14:17.287767afi-git.jinr.ru sshd[6934]: Invalid user odoo from 178.128.80.85 port 50654 2020-07-18T09:14:19.046111afi-git.jinr.ru sshd[6934]: Failed password for invalid user odoo from 178.128.80.85 port 50654 ssh2 2020-07-18T09:18:58.163751afi-git.jinr.ru sshd[8210]: Invalid user yudai from 178.128.80.85 port 38640 ...	2020-07-18 14:40:44
190.14.248.108	attackspambots	Jul 18 05:54:19 debian-2gb-nbg1-2 kernel: \[17303010.858517\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=190.14.248.108 DST=195.201.40.59 LEN=44 TOS=0x00 PREC=0x00 TTL=237 ID=36406 PROTO=TCP SPT=44902 DPT=31180 WINDOW=1024 RES=0x00 SYN URGP=0	2020-07-18 14:43:29
52.143.164.67	attack	Jul 18 06:48:34 scw-6657dc sshd[25584]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.143.164.67 Jul 18 06:48:34 scw-6657dc sshd[25584]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.143.164.67 Jul 18 06:48:36 scw-6657dc sshd[25584]: Failed password for invalid user admin from 52.143.164.67 port 41137 ssh2 ...	2020-07-18 14:49:54
37.205.51.40	attack	Invalid user Admin from 37.205.51.40 port 40924	2020-07-18 14:51:21
205.185.122.121	attack	Connection to SSH Honeypot - Detected by HoneypotDB	2020-07-18 14:57:31
59.63.208.76	attackspambots	Jul 18 08:11:27 * sshd[647]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.63.208.76 Jul 18 08:11:29 * sshd[647]: Failed password for invalid user inoue from 59.63.208.76 port 54428 ssh2	2020-07-18 15:00:32
13.75.250.55	attackbotsspam	Jul 18 08:39:08 vm1 sshd[32454]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.75.250.55 Jul 18 08:39:10 vm1 sshd[32454]: Failed password for invalid user admin from 13.75.250.55 port 60724 ssh2 ...	2020-07-18 14:52:07
212.118.253.117	attackbots	TCP Port Scanning	2020-07-18 14:43:02
162.210.242.47	attackbots	Jul 18 08:34:41 [host] sshd[14705]: Invalid user s Jul 18 08:34:42 [host] sshd[14705]: pam_unix(sshd: Jul 18 08:34:43 [host] sshd[14705]: Failed passwor	2020-07-18 14:43:46
218.78.10.183	attack	2020-07-18T06:27:16.952352shield sshd\[28748\]: Invalid user recepcion from 218.78.10.183 port 58652 2020-07-18T06:27:16.964007shield sshd\[28748\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.78.10.183 2020-07-18T06:27:18.663734shield sshd\[28748\]: Failed password for invalid user recepcion from 218.78.10.183 port 58652 ssh2 2020-07-18T06:31:04.806780shield sshd\[29583\]: Invalid user nginx from 218.78.10.183 port 53354 2020-07-18T06:31:04.818619shield sshd\[29583\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.78.10.183	2020-07-18 15:07:30
81.68.100.138	attackbotsspam	Invalid user ftpuser from 81.68.100.138 port 58250	2020-07-18 15:17:16

Recently Reported IPs

2003:c0:3f1a:c7b:90c:3294:1727:1df5	83.114.140.163	147.27.42.135	55.48.85.213
113.53.46.146	128.53.97.164	27.68.140.228	172.54.68.193
109.93.200.120	180.120.190.220	49.219.232.77	2003:dc:af09:5761:6145:6ade:1333:df5f
35.231.194.103	52.247.61.199	88.215.173.37	156.35.55.139
24.230.201.168	3.124.184.184	128.148.243.106	81.62.68.98