117.50.108.148

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
117.50.108.231	attack	Apr 18 11:54:52 powerpi2 sshd[24999]: Failed password for invalid user xw from 117.50.108.231 port 53642 ssh2 Apr 18 12:01:34 powerpi2 sshd[25342]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.108.231 user=root Apr 18 12:01:36 powerpi2 sshd[25342]: Failed password for root from 117.50.108.231 port 34676 ssh2 ...	2020-04-18 21:57:09

Type

Details

Datetime

117.50.108.231

attack

Apr 18 11:54:52 powerpi2 sshd[24999]: Failed password for invalid user xw from 117.50.108.231 port 53642 ssh2
Apr 18 12:01:34 powerpi2 sshd[25342]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.108.231  user=root
Apr 18 12:01:36 powerpi2 sshd[25342]: Failed password for root from 117.50.108.231 port 34676 ssh2
...

2020-04-18 21:57:09

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 117.50.108.148
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 3988
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;117.50.108.148.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025021500 1800 900 604800 86400

;; Query time: 14 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Feb 15 15:44:53 CST 2025
;; MSG SIZE  rcvd: 107

Host info

Host 148.108.50.117.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 148.108.50.117.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
185.36.81.58	attack	2019-06-29T05:43:19.849357ns1.unifynetsol.net postfix/smtpd\[16424\]: warning: unknown\[185.36.81.58\]: SASL LOGIN authentication failed: authentication failure 2019-06-29T06:44:35.392999ns1.unifynetsol.net postfix/smtpd\[21951\]: warning: unknown\[185.36.81.58\]: SASL LOGIN authentication failed: authentication failure 2019-06-29T07:45:51.045315ns1.unifynetsol.net postfix/smtpd\[27105\]: warning: unknown\[185.36.81.58\]: SASL LOGIN authentication failed: authentication failure 2019-06-29T08:47:11.527970ns1.unifynetsol.net postfix/smtpd\[5826\]: warning: unknown\[185.36.81.58\]: SASL LOGIN authentication failed: authentication failure 2019-06-29T09:48:39.244757ns1.unifynetsol.net postfix/smtpd\[13889\]: warning: unknown\[185.36.81.58\]: SASL LOGIN authentication failed: authentication failure	2019-06-29 13:22:36
60.209.129.206	attackspambots	MultiHost/MultiPort Probe, Scan, Hack -	2019-06-29 13:52:30
86.98.75.19	attackbots	445/tcp 445/tcp [2019-06-26/28]2pkt	2019-06-29 13:08:49
191.232.50.24	attackbots	Lines containing failures of 191.232.50.24 Jun 25 01:01:46 myhost sshd[24437]: Invalid user informix from 191.232.50.24 port 42754 Jun 25 01:01:46 myhost sshd[24437]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=191.232.50.24 Jun 25 01:01:48 myhost sshd[24437]: Failed password for invalid user informix from 191.232.50.24 port 42754 ssh2 Jun 25 01:01:48 myhost sshd[24437]: Received disconnect from 191.232.50.24 port 42754:11: Bye Bye [preauth] Jun 25 01:01:48 myhost sshd[24437]: Disconnected from invalid user informix 191.232.50.24 port 42754 [preauth] Jun 25 01:04:41 myhost sshd[24439]: Invalid user alex from 191.232.50.24 port 44726 Jun 25 01:04:41 myhost sshd[24439]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=191.232.50.24 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=191.232.50.24	2019-06-29 13:10:06
92.118.161.45	attackspam	5060/udp 5353/udp 5351/udp... [2019-04-28/06-28]76pkt,42pt.(tcp),7pt.(udp)	2019-06-29 13:53:25
118.80.168.7	attackspam	5500/tcp 5500/tcp 5500/tcp... [2019-06-21/28]6pkt,1pt.(tcp)	2019-06-29 13:10:23
177.44.17.182	attackbots	Jun 28 19:12:41 web1 postfix/smtpd[26131]: warning: unknown[177.44.17.182]: SASL PLAIN authentication failed: authentication failure ...	2019-06-29 13:05:37
178.128.17.76	attackspambots	Invalid user admin from 178.128.17.76 port 49670	2019-06-29 13:12:39
220.130.162.137	attackbots	445/tcp 445/tcp 445/tcp... [2019-05-01/06-28]10pkt,1pt.(tcp)	2019-06-29 13:37:01
78.15.67.161	attack	Jun 29 01:12:21 cvbmail sshd\[4277\]: Invalid user pi from 78.15.67.161 Jun 29 01:12:21 cvbmail sshd\[4277\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=78.15.67.161 Jun 29 01:12:21 cvbmail sshd\[4279\]: Invalid user pi from 78.15.67.161	2019-06-29 13:16:00
186.209.99.194	attack	445/tcp 445/tcp 445/tcp... [2019-06-19/28]4pkt,1pt.(tcp)	2019-06-29 13:40:21
81.178.128.86	attackbots	NAME : PIPEX-DSL-DYNAMIC CIDR : 81.178.128.0/17 DDoS attack United Kingdom - block certain countries :) IP: 81.178.128.86 Denial-of-Service Attack (DoS) Detected and Blocked by ADMIN - data recovery https://help-dysk.pl	2019-06-29 12:59:54
36.62.211.159	attack	Jun 29 06:28:54 localhost postfix/smtpd\[2559\]: warning: unknown\[36.62.211.159\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 29 06:29:03 localhost postfix/smtpd\[2559\]: warning: unknown\[36.62.211.159\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 29 06:29:16 localhost postfix/smtpd\[2559\]: warning: unknown\[36.62.211.159\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 29 06:29:32 localhost postfix/smtpd\[2559\]: warning: unknown\[36.62.211.159\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 29 06:29:40 localhost postfix/smtpd\[2559\]: warning: unknown\[36.62.211.159\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2019-06-29 13:17:03
92.118.37.84	attackspam	Jun 29 06:44:26 h2177944 kernel: \[107928.633420\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=92.118.37.84 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=250 ID=29455 PROTO=TCP SPT=41610 DPT=44995 WINDOW=1024 RES=0x00 SYN URGP=0 Jun 29 06:51:13 h2177944 kernel: \[108336.162171\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=92.118.37.84 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=250 ID=19655 PROTO=TCP SPT=41610 DPT=52693 WINDOW=1024 RES=0x00 SYN URGP=0 Jun 29 06:51:48 h2177944 kernel: \[108371.459031\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=92.118.37.84 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=250 ID=53286 PROTO=TCP SPT=41610 DPT=24247 WINDOW=1024 RES=0x00 SYN URGP=0 Jun 29 06:53:21 h2177944 kernel: \[108464.163958\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=92.118.37.84 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=250 ID=23733 PROTO=TCP SPT=41610 DPT=3337 WINDOW=1024 RES=0x00 SYN URGP=0 Jun 29 06:53:41 h2177944 kernel: \[108483.893539\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=92.118.37.84 DST=85.214.117.9 LEN=40	2019-06-29 13:17:30
60.251.111.30	attackbotsspam	445/tcp 445/tcp 445/tcp... [2019-05-03/06-28]15pkt,1pt.(tcp)	2019-06-29 13:24:07

Recently Reported IPs

48.124.25.149	156.241.240.111	15.157.220.147	76.6.189.154
155.227.204.17	101.161.116.156	45.76.133.78	248.17.143.35
125.103.54.80	203.199.143.141	208.140.80.192	101.179.145.92
52.140.40.121	107.84.187.41	225.191.66.38	23.154.88.120
127.231.150.32	136.27.4.121	221.70.61.85	14.210.105.11