117.50.94.213 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
117.50.94.134	attackbots	May 31 00:40:02 ny01 sshd[4132]: Failed password for root from 117.50.94.134 port 36896 ssh2 May 31 00:43:37 ny01 sshd[4582]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.94.134 May 31 00:43:39 ny01 sshd[4582]: Failed password for invalid user git from 117.50.94.134 port 49160 ssh2	2020-05-31 12:59:31
117.50.94.134	attackspambots	Invalid user nginxtcp from 117.50.94.134 port 59386	2020-04-03 23:51:49
117.50.94.134	attack	SSH invalid-user multiple login try	2020-03-28 05:01:20
117.50.94.134	attack	SSH Invalid Login	2020-03-24 07:40:01
117.50.94.229	attackbots	Dec 22 15:53:07 MK-Soft-Root2 sshd[32043]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.94.229 Dec 22 15:53:10 MK-Soft-Root2 sshd[32043]: Failed password for invalid user verbrugge from 117.50.94.229 port 9534 ssh2 ...	2019-12-22 23:29:31
117.50.94.229	attack	Dec 15 23:40:55 heissa sshd\[24991\]: Invalid user nasirah from 117.50.94.229 port 52862 Dec 15 23:40:55 heissa sshd\[24991\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.94.229 Dec 15 23:40:57 heissa sshd\[24991\]: Failed password for invalid user nasirah from 117.50.94.229 port 52862 ssh2 Dec 15 23:49:38 heissa sshd\[26328\]: Invalid user vic from 117.50.94.229 port 10882 Dec 15 23:49:38 heissa sshd\[26328\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.94.229	2019-12-16 07:12:55
117.50.94.229	attack	Dec 11 14:31:27 vibhu-HP-Z238-Microtower-Workstation sshd\[5775\]: Invalid user verdeyen from 117.50.94.229 Dec 11 14:31:27 vibhu-HP-Z238-Microtower-Workstation sshd\[5775\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.94.229 Dec 11 14:31:29 vibhu-HP-Z238-Microtower-Workstation sshd\[5775\]: Failed password for invalid user verdeyen from 117.50.94.229 port 39184 ssh2 Dec 11 14:38:33 vibhu-HP-Z238-Microtower-Workstation sshd\[6257\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.94.229 user=nobody Dec 11 14:38:35 vibhu-HP-Z238-Microtower-Workstation sshd\[6257\]: Failed password for nobody from 117.50.94.229 port 36714 ssh2 ...	2019-12-11 18:42:44
117.50.94.229	attackbotsspam	Nov 22 16:02:18 gw1 sshd[8507]: Failed password for root from 117.50.94.229 port 45218 ssh2 ...	2019-11-22 19:16:08
117.50.94.229	attackspam	2019-11-16T08:32:23.229285abusebot.cloudsearch.cf sshd\[7573\]: Invalid user warliker from 117.50.94.229 port 16112	2019-11-16 18:37:48
117.50.94.229	attackbotsspam	Nov 14 16:23:35 vtv3 sshd\[12429\]: Invalid user dbus from 117.50.94.229 port 35410 Nov 14 16:23:35 vtv3 sshd\[12429\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.94.229 Nov 14 16:23:37 vtv3 sshd\[12429\]: Failed password for invalid user dbus from 117.50.94.229 port 35410 ssh2 Nov 14 16:28:35 vtv3 sshd\[14512\]: Invalid user test from 117.50.94.229 port 13020 Nov 14 16:28:35 vtv3 sshd\[14512\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.94.229 Nov 14 16:38:51 vtv3 sshd\[19176\]: Invalid user guest from 117.50.94.229 port 24712 Nov 14 16:38:51 vtv3 sshd\[19176\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.94.229 Nov 14 16:38:53 vtv3 sshd\[19176\]: Failed password for invalid user guest from 117.50.94.229 port 24712 ssh2 Nov 14 16:46:25 vtv3 sshd\[22561\]: Invalid user named from 117.50.94.229 port 58796 Nov 14 16:46:25 vtv3 sshd\[22561\]: pam_unix	2019-11-15 03:10:39
117.50.94.229	attackspam	Oct 13 22:14:21 ns41 sshd[21190]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.94.229	2019-10-14 06:19:14
117.50.94.229	attack	Oct 11 17:41:27 meumeu sshd[5431]: Failed password for root from 117.50.94.229 port 18222 ssh2 Oct 11 17:46:17 meumeu sshd[6213]: Failed password for root from 117.50.94.229 port 48768 ssh2 ...	2019-10-12 11:44:13
117.50.94.229	attackspam	Oct 10 06:55:03 server sshd\[4360\]: User root from 117.50.94.229 not allowed because listed in DenyUsers Oct 10 06:55:03 server sshd\[4360\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.94.229 user=root Oct 10 06:55:05 server sshd\[4360\]: Failed password for invalid user root from 117.50.94.229 port 20666 ssh2 Oct 10 06:59:18 server sshd\[17225\]: User root from 117.50.94.229 not allowed because listed in DenyUsers Oct 10 06:59:18 server sshd\[17225\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.94.229 user=root	2019-10-10 12:16:28
117.50.94.229	attack	Oct 9 03:27:51 web9 sshd\[20354\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.94.229 user=root Oct 9 03:27:54 web9 sshd\[20354\]: Failed password for root from 117.50.94.229 port 10652 ssh2 Oct 9 03:32:51 web9 sshd\[21036\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.94.229 user=root Oct 9 03:32:53 web9 sshd\[21036\]: Failed password for root from 117.50.94.229 port 43434 ssh2 Oct 9 03:37:49 web9 sshd\[21727\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.94.229 user=root	2019-10-09 21:39:37
117.50.94.229	attack	Oct 4 17:50:37 kapalua sshd\[14619\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.94.229 user=root Oct 4 17:50:38 kapalua sshd\[14619\]: Failed password for root from 117.50.94.229 port 17994 ssh2 Oct 4 17:53:58 kapalua sshd\[14948\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.94.229 user=root Oct 4 17:54:00 kapalua sshd\[14948\]: Failed password for root from 117.50.94.229 port 44510 ssh2 Oct 4 17:57:12 kapalua sshd\[15209\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.94.229 user=root	2019-10-05 12:02:55

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 117.50.94.213
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 62375
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;117.50.94.213.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019050401 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Sun May 05 08:18:38 +08 2019
;; MSG SIZE  rcvd: 117

Host info

Host 213.94.50.117.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 213.94.50.117.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
146.56.192.233	attackbots	DATE:2020-09-04 18:52:08, IP:146.56.192.233, PORT:6379 REDIS brute force auth on honeypot server (epe-honey1-hq)	2020-09-05 20:56:24
201.150.149.91	attackspambots	Port probing on unauthorized port 23	2020-09-05 20:42:07
95.0.149.34	attack	Automatic report - Port Scan Attack	2020-09-05 20:35:02
171.224.181.157	attackspam	Honeypot attack, port: 445, PTR: dynamic-ip-adsl.viettel.vn.	2020-09-05 20:43:08
189.189.62.87	attackspam	Automatic report - Port Scan Attack	2020-09-05 20:26:54
51.77.200.139	attackspam	Sep 5 13:44:47 nextcloud sshd\[23149\]: Invalid user bruna from 51.77.200.139 Sep 5 13:44:47 nextcloud sshd\[23149\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.77.200.139 Sep 5 13:44:49 nextcloud sshd\[23149\]: Failed password for invalid user bruna from 51.77.200.139 port 54908 ssh2	2020-09-05 20:22:00
45.142.120.121	attack	Sep 5 14:48:37 srv01 postfix/smtpd\[11018\]: warning: unknown\[45.142.120.121\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 5 14:48:55 srv01 postfix/smtpd\[10116\]: warning: unknown\[45.142.120.121\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 5 14:49:01 srv01 postfix/smtpd\[11018\]: warning: unknown\[45.142.120.121\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 5 14:49:06 srv01 postfix/smtpd\[10116\]: warning: unknown\[45.142.120.121\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 5 14:49:19 srv01 postfix/smtpd\[29518\]: warning: unknown\[45.142.120.121\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-09-05 20:56:57
187.50.63.202	attackbots	Honeypot attack, port: 445, PTR: 187-50-63-202.customer.tdatabrasil.net.br.	2020-09-05 20:55:14
202.157.185.131	attackbotsspam	202.157.185.131 - - [05/Sep/2020:05:16:21 +0100] "POST /wp-login.php HTTP/1.1" 200 2345 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 202.157.185.131 - - [05/Sep/2020:05:16:23 +0100] "POST /wp-login.php HTTP/1.1" 200 2286 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 202.157.185.131 - - [05/Sep/2020:05:16:24 +0100] "POST /xmlrpc.php HTTP/1.1" 200 247 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-09-05 20:19:44
187.10.231.238	attackspam	Sep 5 09:22:31 hidden sshd[40555]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.10.231.238 Sep 5 09:22:32 hidden sshd[40555]: Failed password for invalid user test3 from 187.10.231.238 port 36356 ssh2 Sep 5 09:32:09 hidden sshd[40832]: Invalid user damares from 187.10.231.238 port 56152	2020-09-05 20:44:11
222.186.42.155	attackspam	2020-09-05T12:53:44.002518abusebot-7.cloudsearch.cf sshd[18512]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.42.155 user=root 2020-09-05T12:53:46.083724abusebot-7.cloudsearch.cf sshd[18512]: Failed password for root from 222.186.42.155 port 38795 ssh2 2020-09-05T12:53:48.161376abusebot-7.cloudsearch.cf sshd[18512]: Failed password for root from 222.186.42.155 port 38795 ssh2 2020-09-05T12:53:44.002518abusebot-7.cloudsearch.cf sshd[18512]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.42.155 user=root 2020-09-05T12:53:46.083724abusebot-7.cloudsearch.cf sshd[18512]: Failed password for root from 222.186.42.155 port 38795 ssh2 2020-09-05T12:53:48.161376abusebot-7.cloudsearch.cf sshd[18512]: Failed password for root from 222.186.42.155 port 38795 ssh2 2020-09-05T12:53:44.002518abusebot-7.cloudsearch.cf sshd[18512]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ss ...	2020-09-05 20:54:58
118.70.239.146	attack	CMS (WordPress or Joomla) login attempt.	2020-09-05 20:18:27
200.46.205.136	attackbotsspam	200.46.205.136 - - [05/Sep/2020:13:11:41 +0100] "POST /wp-login.php HTTP/1.1" 200 1885 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 200.46.205.136 - - [05/Sep/2020:13:11:47 +0100] "POST /wp-login.php HTTP/1.1" 200 1868 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 200.46.205.136 - - [05/Sep/2020:13:11:48 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-09-05 20:45:24
45.119.213.92	attack	45.119.213.92 has been banned for [WebApp Attack] ...	2020-09-05 20:33:24
112.17.182.19	attack	Invalid user gaowei from 112.17.182.19 port 36616	2020-09-05 20:31:17

Recently Reported IPs

121.131.23.249	213.179.99.254	184.105.139.93	202.137.117.91
196.231.211.3	138.197.94.164	211.206.77.87	187.19.150.214
142.4.6.175	197.149.94.242	87.101.92.171	190.96.181.239
202.71.13.79	185.76.81.3	69.30.243.244	129.204.133.193
114.35.105.141	165.227.67.64	34.238.139.179	188.166.3.42