117.68.111.198

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 117.68.111.198
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 56980
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;117.68.111.198.			IN	A

;; AUTHORITY SECTION:
.			29	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025021600 1800 900 604800 86400

;; Query time: 31 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 16 21:52:49 CST 2025
;; MSG SIZE  rcvd: 107

HOST信息:

Host 198.111.68.117.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 198.111.68.117.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
185.176.26.101	attack	Splunk® : port scan detected: Jul 26 05:07:56 testbed kernel: Firewall: TCP_IN Blocked IN=eth0 OUT= MAC=82:c6:52:d1:6e:53:c0:42:d0:39:2c:30:08:00 SRC=185.176.26.101 DST=104.248.11.191 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=40981 PROTO=TCP SPT=41515 DPT=6851 WINDOW=1024 RES=0x00 SYN URGP=0	2019-07-26 17:18:49
222.10.27.243	attackspam	Jul 26 12:44:33 server sshd\[1474\]: Invalid user 1111 from 222.10.27.243 port 59102 Jul 26 12:44:33 server sshd\[1474\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.10.27.243 Jul 26 12:44:36 server sshd\[1474\]: Failed password for invalid user 1111 from 222.10.27.243 port 59102 ssh2 Jul 26 12:49:57 server sshd\[24026\]: Invalid user minecraft from 222.10.27.243 port 54876 Jul 26 12:49:57 server sshd\[24026\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.10.27.243	2019-07-26 17:56:39
103.120.226.111	attackbots	Jul 25 19:51:48 debian sshd\[15123\]: Invalid user wa from 103.120.226.111 port 48546 Jul 25 19:51:48 debian sshd\[15123\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.120.226.111 Jul 25 19:51:50 debian sshd\[15123\]: Failed password for invalid user wa from 103.120.226.111 port 48546 ssh2 ...	2019-07-26 17:04:59
191.193.78.164	attackbots	Splunk® : port scan detected: Jul 26 05:07:18 testbed kernel: Firewall: TCP_IN Blocked IN=eth0 OUT= MAC=82:c6:52:d1:6e:53:c0:42:d0:39:2c:30:08:00 SRC=191.193.78.164 DST=104.248.11.191 LEN=40 TOS=0x00 PREC=0x00 TTL=52 ID=285 PROTO=TCP SPT=8142 DPT=9527 WINDOW=8438 RES=0x00 SYN URGP=0	2019-07-26 17:44:16
35.240.55.191	attackbotsspam	Jul 26 11:07:02 ArkNodeAT sshd\[18223\]: Invalid user deploy from 35.240.55.191 Jul 26 11:07:02 ArkNodeAT sshd\[18223\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.240.55.191 Jul 26 11:07:04 ArkNodeAT sshd\[18223\]: Failed password for invalid user deploy from 35.240.55.191 port 47056 ssh2	2019-07-26 17:52:20
185.22.60.82	attack	Jul 26 00:56:16 xb3 sshd[5242]: reveeclipse mapping checking getaddrinfo for 185-22-60-82.flops.ru [185.22.60.82] failed - POSSIBLE BREAK-IN ATTEMPT! Jul 26 00:56:19 xb3 sshd[5242]: Failed password for invalid user harry from 185.22.60.82 port 49006 ssh2 Jul 26 00:56:19 xb3 sshd[5242]: Received disconnect from 185.22.60.82: 11: Bye Bye [preauth] Jul 26 01:02:55 xb3 sshd[21573]: reveeclipse mapping checking getaddrinfo for 185-22-60-82.flops.ru [185.22.60.82] failed - POSSIBLE BREAK-IN ATTEMPT! Jul 26 01:02:57 xb3 sshd[21573]: Failed password for invalid user tomek from 185.22.60.82 port 40536 ssh2 Jul 26 01:02:57 xb3 sshd[21573]: Received disconnect from 185.22.60.82: 11: Bye Bye [preauth] Jul 26 01:11:32 xb3 sshd[16239]: reveeclipse mapping checking getaddrinfo for 185-22-60-82.flops.ru [185.22.60.82] failed - POSSIBLE BREAK-IN ATTEMPT! Jul 26 01:11:34 xb3 sshd[16239]: Failed password for invalid user demo from 185.22.60.82 port 33086 ssh2 Jul 26 01:11:34 xb3 sshd[1623........ -------------------------------	2019-07-26 16:52:06
117.69.47.153	attackspambots	[Aegis] @ 2019-07-26 10:07:03 0100 -> Sendmail rejected message.	2019-07-26 17:46:07
110.92.118.195	attackbotsspam	firewall-block, port(s): 445/tcp	2019-07-26 16:56:42
49.88.112.66	attackbots	2019-07-26T11:07:03.581556lon01.zurich-datacenter.net sshd\[6330\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.66 user=root 2019-07-26T11:07:05.698900lon01.zurich-datacenter.net sshd\[6330\]: Failed password for root from 49.88.112.66 port 32265 ssh2 2019-07-26T11:07:07.325111lon01.zurich-datacenter.net sshd\[6330\]: Failed password for root from 49.88.112.66 port 32265 ssh2 2019-07-26T11:07:10.226358lon01.zurich-datacenter.net sshd\[6330\]: Failed password for root from 49.88.112.66 port 32265 ssh2 2019-07-26T11:08:17.980664lon01.zurich-datacenter.net sshd\[6360\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.66 user=root ...	2019-07-26 17:09:59
137.74.152.138	attack	26.07.2019 09:14:20 SSH access blocked by firewall	2019-07-26 17:28:02
106.51.50.2	attackspambots	Jul 26 11:07:41 localhost sshd\[21872\]: Invalid user giga from 106.51.50.2 port 6336 Jul 26 11:07:41 localhost sshd\[21872\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.51.50.2 Jul 26 11:07:43 localhost sshd\[21872\]: Failed password for invalid user giga from 106.51.50.2 port 6336 ssh2	2019-07-26 17:25:47
103.209.178.44	attackspambots	Jul 26 17:16:41 our-server-hostname postfix/smtpd[10979]: connect from unknown[103.209.178.44] Jul x@x Jul 26 17:16:45 our-server-hostname postfix/smtpd[10979]: lost connection after RCPT from unknown[103.209.178.44] Jul 26 17:16:45 our-server-hostname postfix/smtpd[10979]: disconnect from unknown[103.209.178.44] Jul 26 18:25:45 our-server-hostname postfix/smtpd[17978]: connect from unknown[103.209.178.44] Jul x@x Jul x@x Jul x@x Jul x@x Jul x@x Jul x@x Jul x@x Jul x@x Jul x@x Jul x@x ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=103.209.178.44	2019-07-26 17:55:04
107.77.248.114	attackspambots	Jul 26 10:52:24 mxgate1 postfix/postscreen[20768]: CONNECT from [107.77.248.114]:6175 to [176.31.12.44]:25 Jul 26 10:52:24 mxgate1 postfix/dnsblog[21012]: addr 107.77.248.114 listed by domain cbl.abuseat.org as 127.0.0.2 Jul 26 10:52:24 mxgate1 postfix/dnsblog[21009]: addr 107.77.248.114 listed by domain zen.spamhaus.org as 127.0.0.11 Jul 26 10:52:24 mxgate1 postfix/dnsblog[21009]: addr 107.77.248.114 listed by domain zen.spamhaus.org as 127.0.0.4 Jul 26 10:52:24 mxgate1 postfix/dnsblog[21011]: addr 107.77.248.114 listed by domain bl.spamcop.net as 127.0.0.2 Jul 26 10:52:24 mxgate1 postfix/dnsblog[20886]: addr 107.77.248.114 listed by domain b.barracudacentral.org as 127.0.0.2 Jul 26 10:52:30 mxgate1 postfix/postscreen[20768]: DNSBL rank 5 for [107.77.248.114]:6175 Jul x@x Jul 26 10:52:31 mxgate1 postfix/postscreen[20768]: HANGUP after 0.96 from [107.77.248.114]:6175 in tests after SMTP handshake Jul 26 10:52:31 mxgate1 postfix/postscreen[20768]: DISCONNECT [107.77.248......... -------------------------------	2019-07-26 17:23:17
132.232.39.15	attack	Invalid user howard from 132.232.39.15 port 58272	2019-07-26 16:57:04
176.9.71.213	attack	Suspicious User-Agent Strings, PTR: motoko-mk4.lapo.it.	2019-07-26 16:50:53

最近上报的IP列表

4.109.254.16	131.58.211.63	185.147.32.236	255.110.51.60
83.36.106.66	92.218.81.60	142.125.168.182	134.240.248.151
225.34.118.72	59.116.74.29	197.86.30.251	161.137.152.111
51.224.82.110	91.168.137.161	239.226.201.170	241.47.91.123
159.243.9.180	192.176.1.80	201.136.161.54	154.199.114.118