117.50.134.48 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: Shanghai UCloud Information Technology Company Limited

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspambots	Invalid user swr from 117.50.134.48 port 54634	2020-05-23 13:10:07

Comments on same subnet:

IP	Type	Details	Datetime
117.50.134.134	attackspambots	SSH brute force	2020-05-09 22:40:51
117.50.134.134	attackbots	May 5 03:22:51 OPSO sshd\[14064\]: Invalid user denise from 117.50.134.134 port 54674 May 5 03:22:51 OPSO sshd\[14064\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.134.134 May 5 03:22:53 OPSO sshd\[14064\]: Failed password for invalid user denise from 117.50.134.134 port 54674 ssh2 May 5 03:28:20 OPSO sshd\[15238\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.134.134 user=root May 5 03:28:22 OPSO sshd\[15238\]: Failed password for root from 117.50.134.134 port 55500 ssh2	2020-05-05 09:58:53
117.50.134.134	attackspam	$f2bV_matches	2020-05-01 12:48:20
117.50.134.134	attack	Invalid user admin from 117.50.134.134 port 50664	2020-04-25 06:26:09
117.50.134.56	attackspam	117.50.134.56 has been banned for [spam] ...	2020-04-10 21:14:29

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 117.50.134.48
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 38365
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;117.50.134.48.			IN	A

;; AUTHORITY SECTION:
.			457	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020052300 1800 900 604800 86400

;; Query time: 41 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat May 23 13:10:02 CST 2020
;; MSG SIZE  rcvd: 117

Host info

Host 48.134.50.117.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 48.134.50.117.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
171.13.38.137	attackspambots	Unauthorized connection attempt from IP address 171.13.38.137 on Port 445(SMB)	2019-11-04 05:05:32
120.138.8.85	attack	Unauthorized connection attempt from IP address 120.138.8.85 on Port 445(SMB)	2019-11-04 04:38:56
125.44.188.216	attackspambots	Automatic report - Port Scan Attack	2019-11-04 05:13:59
193.112.91.90	attack	2019-11-03T15:31:44.918508hub.schaetter.us sshd\[1616\]: Invalid user Fuwuqi2003\* from 193.112.91.90 port 54250 2019-11-03T15:31:44.929910hub.schaetter.us sshd\[1616\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.112.91.90 2019-11-03T15:31:47.189653hub.schaetter.us sshd\[1616\]: Failed password for invalid user Fuwuqi2003\* from 193.112.91.90 port 54250 ssh2 2019-11-03T15:36:40.451189hub.schaetter.us sshd\[1698\]: Invalid user Pa55word2003 from 193.112.91.90 port 57182 2019-11-03T15:36:40.459117hub.schaetter.us sshd\[1698\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.112.91.90 ...	2019-11-04 04:42:23
198.71.239.41	attackbotsspam	Automatic report - XMLRPC Attack	2019-11-04 04:55:42
111.118.179.153	attack	[2019-11-0321:45:19 0100]info[cpaneld]111.118.179.153-titancap"POST/login/\?login_only=1HTTP/1.1"FAILEDLOGINcpaneld:accessdeniedforroot\,reseller\,anduserpassword[2019-11-0321:45:20 0100]info[cpaneld]111.118.179.153-titanc"POST/login/\?login_only=1HTTP/1.1"FAILEDLOGINcpaneld:invalidcpanelusertitanc$has_cpuser_filefailed$[2019-11-0321:45:21 0100]info[cpaneld]111.118.179.153-titanca"POST/login/\?login_only=1HTTP/1.1"FAILEDLOGINcpaneld:invalidcpanelusertitanca$has_cpuser_filefailed$[2019-11-0321:45:22 0100]info[cpaneld]111.118.179.153-titan"POST/login/\?login_only=1HTTP/1.1"FAILEDLOGINcpaneld:invalidcpanelusertitan$has_cpuser_filefailed$[2019-11-0321:45:22 0100]info[cpaneld]111.118.179.153-titancapi"POST/login/\?login_only=1HTTP/1.1"FAILEDLOGINcpaneld:invalidcpanelusertitancapi$has_cpuser_filefailed$	2019-11-04 04:58:37
14.207.126.207	attack	Unauthorized connection attempt from IP address 14.207.126.207 on Port 445(SMB)	2019-11-04 04:43:26
74.208.47.8	attackspambots	74.208.47.8 - - \[03/Nov/2019:18:29:10 +0000\] "POST /wp-login.php HTTP/1.1" 200 4358 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 74.208.47.8 - - \[03/Nov/2019:18:29:10 +0000\] "POST /xmlrpc.php HTTP/1.1" 200 403 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" ...	2019-11-04 04:39:30
138.197.176.130	attackspam	Nov 3 08:24:02 mockhub sshd[7622]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.176.130 Nov 3 08:24:03 mockhub sshd[7622]: Failed password for invalid user admin from 138.197.176.130 port 35772 ssh2 ...	2019-11-04 04:40:14
79.124.8.108	attackbotsspam	Time: Sun Nov 3 11:24:04 2019 -0300 IP: 79.124.8.108 (GB/United Kingdom/-) Failures: 30 (smtpauth) Interval: 3600 seconds Blocked: Permanent Block	2019-11-04 05:00:09
51.83.32.232	attackbotsspam	Nov 3 07:11:37 * sshd[29996]: Failed password for invalid user vampire from 51.83.32.232 port 56948 ssh2 Nov 3 07:22:12 * sshd[30222]: Failed password for invalid user dockeradmin from 51.83.32.232 port 60480 ssh2 Nov 3 07:33:05 * sshd[30456]: Failed password for invalid user dan from 51.83.32.232 port 35790 ssh2 Nov 3 07:36:43 * sshd[30524]: Failed password for invalid user incoming from 51.83.32.232 port 46402 ssh2 Nov 3 07:43:59 * sshd[30785]: Failed password for invalid user openerp from 51.83.32.232 port 39354 ssh2 Nov 3 07:54:50 * sshd[30984]: Failed password for invalid user test2 from 51.83.32.232 port 42902 ssh2 Nov 3 08:16:49 * sshd[31546]: Failed password for invalid user operator from 51.83.32.232 port 49892 ssh2 Nov 3 08:20:22 * sshd[31625]: Failed password for invalid user marci from 51.83.32.232 port 60452 ssh2 Nov 3 08:27:37 * sshd[31845]: Failed password for invalid user pos from 51.83.32.232 port 53258 ssh2 Nov 3 08:56:53 * sshd[32622]: Failed password for inval	2019-11-04 04:45:10
54.152.215.48	attackbotsspam	Honeypot hit.	2019-11-04 05:15:11
93.62.214.202	attackspam	Unauthorized connection attempt from IP address 93.62.214.202 on Port 445(SMB)	2019-11-04 05:02:01
140.143.136.89	attackspam	Nov 3 17:13:09 apollo sshd\[23732\]: Invalid user jeferson from 140.143.136.89Nov 3 17:13:11 apollo sshd\[23732\]: Failed password for invalid user jeferson from 140.143.136.89 port 34206 ssh2Nov 3 17:36:52 apollo sshd\[23757\]: Failed password for root from 140.143.136.89 port 41152 ssh2 ...	2019-11-04 05:02:46
109.87.7.214	attackbotsspam	Unauthorized connection attempt from IP address 109.87.7.214 on Port 445(SMB)	2019-11-04 04:41:44

Recently Reported IPs

146.159.59.56	199.52.5.88	66.149.229.142	112.244.181.119
187.112.194.209	186.179.163.101	186.116.24.145	186.12.169.243
182.190.17.116	179.53.204.56	175.212.89.108	168.227.96.147
160.20.225.2	154.73.101.82	151.254.216.223	125.160.66.32
120.53.12.94	151.154.30.79	116.2.212.117	113.190.246.38