AbuseIPDB » 117.50.11.87

117.50.11.87 was found in our database!

This IP was reported 1,162 times. Confidence of Abuse is 100%: ?

100%

ISP	Shanghai UCloud Information Technology Company Limited
Usage Type	Data Center/Web Hosting/Transit
Hostname(s)	dnyrdjf.cn
Domain Name	ucloud.cn
Country	China
City	Shanghai, Shanghai

IP info including ISP, Usage Type, and Location provided by IP2Location. Updated monthly.

Report 117.50.11.87

Whois 117.50.11.87

IP Abuse Reports for 117.50.11.87:

This IP address has been reported a total of 1,162 times from 257 distinct sources. 117.50.11.87 was first reported on February 20th 2021, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	Date	Comment	Categories
Thomas Anderson	30 May 2023		Hacking Brute-Force Web App Attack
IrisFlower	30 May 2023	Unauthorized connection attempt detected from IP address 117.50.11.87 to port 22 [J]	Port Scan Hacking
IrisFlower	30 May 2023	Unauthorized connection attempt detected from IP address 117.50.11.87 to port 22 [J]	Port Scan Hacking
IrisFlower	30 May 2023	Unauthorized connection attempt detected from IP address 117.50.11.87 to port 22 [J]	Port Scan Hacking
IrisFlower	30 May 2023	Unauthorized connection attempt detected from IP address 117.50.11.87 to port 22 [J]	Port Scan Hacking
maxxsense	30 May 2023	(postfix-unknown) Failed postfix unknown login with username [redacted] from 117.50.11.87 (CN/China/ ... show more(postfix-unknown) Failed postfix unknown login with username [redacted] from 117.50.11.87 (CN/China/dnyrdjf.cn) show less	Hacking
Paul Smith	29 May 2023	Email Auth Brute force attack 1/1 in last day	Brute-Force
lavnet.net	29 May 2023	May 29 16:11:16 angela postfix/smtpd[633807]: warning: unknown[117.50.11.87]: SASL LOGIN authenticat ... show moreMay 29 16:11:16 angela postfix/smtpd[633807]: warning: unknown[117.50.11.87]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 May 29 16:11:17 angela postfix/smtpd[633807]: lost connection after AUTH from unknown[117.50.11.87] May 29 16:11:17 angela postfix/smtpd[633807]: disconnect from unknown[117.50.11.87] ehlo=1 auth=0/1 commands=1/2 ... show less	Brute-Force Web App Attack
ghostwarriors	29 May 2023	Attempts against SMTP/SSMTP	Brute-Force Web App Attack
security.rdmc.fr	29 May 2023	IP in Malicious Database	Web App Attack
opcenter	29 May 2023	2023-05-29 H=(dnyrdjf.cn) [117.50.11.87] F=<[email protected]> rejected RCPT <[email protected]**REMOVE ... show more2023-05-29 H=(dnyrdjf.cn) [117.50.11.87] F=<[email protected]> rejected RCPT <[email protected]**REMOVED**.eu>: Unrouteable address 2023-05-29 H=(dnyrdjf.cn) [117.50.11.87] F=<[email protected]> rejected RCPT <[email protected]**REMOVED**.eu>: Unrouteable address 2023-05-29 H=(dnyrdjf.cn) [117.50.11.87] F=<[email protected]> rejected RCPT <[email protected]**REMOVED**.eu>: Unrouteable address show less	Brute-Force
Paul Smith	28 May 2023	Email Auth Brute force attack 1/1 in last day	Brute-Force
dagasistemas-sl	28 May 2023	May 28 16:19:00 dgserver sshd[31002]: Invalid user guest from 117.50.11.87 port 48384 May 28 1 ... show moreMay 28 16:19:00 dgserver sshd[31002]: Invalid user guest from 117.50.11.87 port 48384 May 28 16:19:00 dgserver sshd[31002]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.11.87 May 28 16:19:02 dgserver sshd[31002]: Failed password for invalid user guest from 117.50.11.87 port 48384 ssh2 ... show less	Brute-Force SSH
MrRage	28 May 2023	SSH Brute Force Attempt Failed Login From IP Address 117.50.11.87	Brute-Force SSH
Dorian GRANDHAY	28 May 2023	117.50.11.87 (CN/China/dnyrdjf.cn), 5 distributed smtpauth attacks on account [hello] in the last 36 ... show more117.50.11.87 (CN/China/dnyrdjf.cn), 5 distributed smtpauth attacks on account [hello] in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_DISTATTACK; Logs: 2023-05-28 14:02:48 dovecot_login authenticator failed for (dnyrdjf.cn) [117.50.11.87]:51704: 535 Incorrect authentication data (set_id=hello) 2023-05-28 14:39:44 dovecot_login authenticator failed for ([116.132.123.22]) [116.132.123.22]:34002: 535 Incorrect authentication data (set_id=hello) 2023-05-28 14:16:43 dovecot_login authenticator failed for (182.48.203.31.dvois.com) [182.48.203.31]:52878: 535 Incorrect authentication data (set_id=hello) 2023-05-28 14:34:35 dovecot_login authenticator failed for ([185.196.127.87]) [185.196.127.87]:37529: 535 Incorrect authentication data (set_id=hello) 2023-05-28 14:08:40 dovecot_login authenticator failed for ([129.204.111.150]) [119.123.203.154]:35667: 535 Incorrect authentication data (set_id=hello) IP Addresses Blocked: show less	Port Scan

Is this your IP? You may request to takedown any associated reports. We will attempt to verify your ownership. Request Takedown 🚩